Content
(MS09-066) Vulnerability in Active Directory Could Allow Denial of Service (973309)
- Type
- Buffer Overflow
- Impact of exploitation
- Denial of Service
- User Interaction
- no user interaction is needed
- Attack Vector
- Malicious remote network traffic
- Rating
- High
- CVE reference
- CVE-2009-1928,
- Vendor Status
- Responded and patched
- Vulnerable systems
- Windows 2000 SP4,
- Windows 2003 SP2,
- Windows 2003 x64 SP2,
- Windows 2003 Itanium SP2,
- Windows 2008,
- Windows 2008 x64,
- Summary
- A denial of service vulnerability exists in implementations of Active Directory on Microsoft Windows 2000 and Windows Server 2003.
Tab Navigation
Description
A denial of service vulnerability exists in implementations of Active Directory on Microsoft Windows 2000 and Windows Server 2003. The vulnerability also exists in implementations of Active Directory Application Mode (ADAM) when installed on Windows XP and Windows Server 2003. The vulnerability is due to stack space exhaustion during execution of certain types of LDAP or LDAPS requests. An attacker who successfully exploited this vulnerability could cause the computer to stop responding.
McAfee Product Mitigation & Recommendations
Recommendations
The vendor has released a patch to address this issue: http://www.microsoft.com/technet/security/bulletin/ms09-066.mspx
McAfee Product Mitigation
McAfee Foundstone
- Signature:
- (MS09-066) Vulnerability in Active Directory Could Allow Denial of Service (973309)
- Signature identifier:
- 7327
- Release date:
- 11/10/2009
Additional Resources
(MS09-066) Vulnerability in Active Directory Could Allow Denial of Service (973309)
http://www.microsoft.com/technet/security/bulletin/ms09-066.mspx
All Information
Timeline -
11/10/2009
Vendor has provided a patch.
Description -
A denial of service vulnerability exists in implementations of Active Directory on Microsoft Windows 2000 and Windows Server 2003. The vulnerability also exists in implementations of Active Directory Application Mode (ADAM) when installed on Windows XP and Windows Server 2003. The vulnerability is due to stack space exhaustion during execution of certain types of LDAP or LDAPS requests. An attacker who successfully exploited this vulnerability could cause the computer to stop responding.
McAfee Product Mitigation & Recommendations
Recommendations -
The vendor has released a patch to address this issue: http://www.microsoft.com/technet/security/bulletin/ms09-066.mspx
McAfee Product Mitigation
McAfee Foundstone
- Signature:
- (MS09-066) Vulnerability in Active Directory Could Allow Denial of Service (973309)
- Signature identifier:
- 7327
- Release date:
- 11/10/2009
Additional Resources
Additional Resources -
(MS09-066) Vulnerability in Active Directory Could Allow Denial of Service (973309)
http://www.microsoft.com/technet/security/bulletin/ms09-066.mspx
