A vulnerability exists in the Lightweight Directory Access Protocol (LDAP) message processing of the Windows 2000 domain controller. An attacker may be able to cause a denial-of-service condition to the vulnerable Active Directory domain.
A vulnerability exists in the processing of Lightweight Directory Access Protocol (LDAP) messages by the Windows 2000 domain controller. An attacker may be able send a crafted LDAP message to the vulnerable system and stop the authentication service for the Active Directory domain to stop.
A remote attacker may be able to stop the authentication service, causing a denial-of-service condition for the Active Directory domain.
Apply a patch from the vendor
Microsoft Security Bulletin MS04-011 contains patch information to resolve this issue.
Thanks to Microsoft for reporting this vulnerability.
This document was written by Jason A Rafail.
|Date First Published:||2004-04-14|
|Date Last Updated:||2004-04-14 01:56 UTC|