I'm sure it's not news to most of you but for those who haven't heard there has now been an exploit found that allows any MS Exchange Server 5.5 or 2000 function as an open relay. My understanding is that there is currently no fix.
Um, no.
It's hardly an "exploit."
If you have the guest account enabled, you can be used to relay.
Well, duh. That's what a guest account is for -- and why it's disabled by default.
(The only news is that the Code Red worm enables the guest account, and the available cleaners don't disable it... so you should do so yourself.)
This is one time the sky *isn't* falling.
