|
|
|
Vulnerability Note VU#639428Microsoft Windows 2000 LSASS fails to properly handle certain LDAP messagesOverviewA vulnerability exists in the Lightweight Directory Access Protocol (LDAP) message processing of the Windows 2000 domain controller. An attacker may be able to cause a denial-of-service condition to the vulnerable Active Directory domain.I. DescriptionA vulnerability exists in the processing of Lightweight Directory Access Protocol (LDAP) messages by the Windows 2000 domain controller. An attacker may be able send a crafted LDAP message to the vulnerable system and stop the authentication service for the Active Directory domain to stop.II. ImpactA remote attacker may be able to stop the authentication service, causing a denial-of-service condition for the Active Directory domain.III. SolutionApply a patch from the vendorMicrosoft Security Bulletin MS04-011 contains patch information to resolve this issue.
References
Thanks to Microsoft for reporting this vulnerability. This document was written by Jason A Rafail.
If you have feedback, comments, or additional information about this vulnerability, please send us
email. |
|||||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||||||
Get Adobe Reader