Vulnerability Note VU#639428
Microsoft Windows 2000 LSASS fails to properly handle certain LDAP messages
A vulnerability exists in the Lightweight Directory Access Protocol (LDAP) message processing of the Windows 2000 domain controller. An attacker may be able to cause a denial-of-service condition to the vulnerable Active Directory domain.
A vulnerability exists in the processing of Lightweight Directory Access Protocol (LDAP) messages by the Windows 2000 domain controller. An attacker may be able send a crafted LDAP message to the vulnerable system and stop the authentication service for the Active Directory domain to stop.
A remote attacker may be able to stop the authentication service, causing a denial-of-service condition for the Active Directory domain.
Apply a patch from the vendor
Microsoft Security Bulletin MS04-011 contains patch information to resolve this issue.
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|Microsoft Corporation||Affected||-||13 Apr 2004|
CVSS Metrics (Learn More)
Thanks to Microsoft for reporting this vulnerability.
This document was written by Jason A Rafail.
- CVE IDs: CAN-2003-0663
- Date Public: 13 Apr 2004
- Date First Published: 13 Apr 2004
- Date Last Updated: 13 Apr 2004
- Severity Metric: 4.94
- Document Revision: 2
If you have feedback, comments, or additional information about this vulnerability, please send us email.