MS Exchange LDAP Vulnerability

I noticed that our Exhchange server still had LDAP enable for annon. users.

I connected to TCP port 389 with telnet but was unable to do anything with it except to connect. How would someone be able to use this type of connection to gather e.mail addresses? What would you type? …etc.

I set my terminal to Local Echo, but cannot type any commands. Anyone?