Content
(MS09-018) Microsoft Windows Active Directory Memory Leak Vulnerability (971055)
- Type
- Logic error
- Impact of exploitation
- Denial of Service
- User Interaction
- no user interaction is needed
- Attack Vector
- Malicious remote network traffic
- Rating
- Low
- CVE reference
- CVE-2009-1139,
- Vendor Status
- Responded and patched
- Vulnerable systems
- Windows 2000 SP4,
- Windows 2003 SP2,
- Windows 2003 x64 SP2,
- Windows 2003 Itanium SP2,
- Windows XP SP3,
- Windows XP X64 SP2,
- Summary
- A vulnerability in Microsoft Active Directory may allow for denial-of-service attacks.
Tab Navigation
Description
A vulnerability in Microsoft Active Directory may allow for denial-of-service attacks. The flaw is specific to implementation of Active Directory on Microsoft servers. Improper memory management, during the processing of LDAP and LDAPS requests, can cause the server to stop responding, resulting in a denial-of-service condition. Exploitation can be achieved via specially-crafted LDAP or LDAPS requests.
McAfee Product Mitigation & Recommendations
Recommendations
The vendor has released a patch to address this issue: http://www.microsoft.com/technet/security/bulletin/ms09-018.mspx
McAfee Product Mitigation
McAfee Foundstone
- Signature:
- (MS09-018) Microsoft Windows Active Directory Memory Leak Vulnerability (971055)
- Signature identifier:
- 6743
- Release date:
- 6/9/2009
McAfee Intrushield
- Signature:
- LDAP: Microsoft Windows Active Directory Memory Leak Vulnerability
- Signature identifier:
- 0x41702400
- Release date:
- 6/9/2009
- First released in:
- 4.1.51, 5.1.21
The Remedy V-Flash of June 10 contains remedies.
- Release date:
- 6/10/2009
Additional Resources
Vulnerabilities in Active Directory Could Allow Remote Code Execution (971055)
http://www.microsoft.com/technet/security/bulletin/ms09-018.mspx
All Information
Timeline -
6/9/2009
Vendor has provided a patch.
Description -
A vulnerability in Microsoft Active Directory may allow for denial-of-service attacks. The flaw is specific to implementation of Active Directory on Microsoft servers. Improper memory management, during the processing of LDAP and LDAPS requests, can cause the server to stop responding, resulting in a denial-of-service condition. Exploitation can be achieved via specially-crafted LDAP or LDAPS requests.
McAfee Product Mitigation & Recommendations
Recommendations -
The vendor has released a patch to address this issue: http://www.microsoft.com/technet/security/bulletin/ms09-018.mspx
McAfee Product Mitigation
McAfee Foundstone
- Signature:
- (MS09-018) Microsoft Windows Active Directory Memory Leak Vulnerability (971055)
- Signature identifier:
- 6743
- Release date:
- 6/9/2009
McAfee Intrushield
- Signature:
- LDAP: Microsoft Windows Active Directory Memory Leak Vulnerability
- Signature identifier:
- 0x41702400
- Release date:
- 6/9/2009
- First released in:
- 4.1.51, 5.1.21
The Remedy V-Flash of June 10 contains remedies.
- Release date:
- 6/10/2009
Additional Resources
Additional Resources -
Vulnerabilities in Active Directory Could Allow Remote Code Execution (971055)
http://www.microsoft.com/technet/security/bulletin/ms09-018.mspx
