Vigil@nce: Windows, denial of service of the Active Directory
June 2008 by Vigil@nce
An attacker can send a malicious LDAP query in order to create a
denial of service in the Active Directory, ADAM or AD LDS.
– Gravity: 2/4
– Consequences: denial of service of service
– Provenance: intranet client
– Means of attack: no proof of concept, no attack
– Ability of attacker: expert (4/4)
– Confidence: confirmed by the editor (5/5)
– Diffusion of the vulnerable configuration: high (3/3)
– Creation date: 11/06/2008
– Identifier: VIGILANCE-VUL-7886
IMPACTED PRODUCTS
- Microsoft Windows 2000 [confidential versions]
- Microsoft Windows 2003 [confidential versions]
- Microsoft Windows 2008
- Microsoft Windows XP [confidential versions]
DESCRIPTION
A vulnerability impacts following components:
- Active Directory (Windows Windows Server 2000, 2003 and 2008)
- Active Directory Application Mode (ADAM) (Windows XP
Professional and Windows Server 2003)
- Active Directory Lightweight Directory Service (AD LDS)
(Windows Server 2008)
These services do not correctly validate received LDAP queries,
which stop them. Technical details are unknown.
An attacker can therefore send a malicious LDAP query in order to
create a denial of service in the Active Directory, ADAM or AD LDS.
CHARACTERISTICS
– Identifiers: 953235, CVE-2008-1445, MS08-035, VIGILANCE-VUL-7886
– Url: https://vigilance.aql.fr/tree/1/7886