|
Microsoft Windows Active Directory LDAP Request Processing Denial of Service
|
|
Secunia Advisory:
|
SA30586
|
|
|
Release Date:
|
2008-06-10
|
|
Popularity:
|
5,900 views
|
|
|
Critical:
|
Less critical
|
|
Impact:
|
DoS
|
|
Where:
|
From local network
|
|
Solution Status:
|
Vendor Patch
|
|
| OS: | Microsoft Windows 2000 Advanced Server
Microsoft Windows 2000 Datacenter Server
Microsoft Windows 2000 Server
Microsoft Windows Server 2003 Datacenter Edition
Microsoft Windows Server 2003 Enterprise Edition
Microsoft Windows Server 2003 Standard Edition
Microsoft Windows Server 2003 Web Edition
Microsoft Windows Server 2008
Microsoft Windows XP Professional
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities 
|
|
| CVE reference: | CVE-2008-1445
|
|
Description:
A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious people or malicious users to cause a DoS (Denial of Service).
The vulnerability is caused due to an input validation error in the processing of LDAP requests. This can be exploited to cause a vulnerable system to stop responding and automatically restart via a specially crafted LDAP packet sent to the Active Directory Application Mode (ADAM), Active Directory, or AD LDS server.
Successful exploitation requires valid logon credentials on Windows XP Professional, Windows Server 2003, and Windows Server 2008.
NOTE: Active Directory Application Mode (ADAM) is not enabled upon installation.
Solution:
Apply patches.
-- Active Directory --
Windows 2000 SP4:
http://www.microsoft.com/downloads/de...=53438880-9ea9-4975-9b85-2a1d3d232793
Windows Server 2003 SP1/SP2:
http://www.microsoft.com/downloads/de...=a4aed117-3c76-4d80-b50e-8e07e2ef2f7d
Windows Server 2003 x64 Edition (optionally with SP2):
http://www.microsoft.com/downloads/de...=8298a6e4-d3e2-48ea-ac29-aa4dc5a8ec77
Windows Server 2003 with SP1/SP2 for Itanium-based systems:
http://www.microsoft.com/downloads/de...=f6bf4b85-b91d-4378-a356-cd11f12cbbfd
Windows Server 2008 for 32-bit Systems:
http://www.microsoft.com/downloads/de...=2981156e-2e2f-469e-91be-da127d50f3fc
Windows Server 2008 for x64-based Systems:
http://www.microsoft.com/downloads/de...=b5cfe6f4-c5ba-4be9-a6b8-9381c40c85aa
-- ADAM --
Windows XP SP2/SP3:
http://www.microsoft.com/downloads/de...=7d6aec31-cfb4-470c-983e-78c6a3ebabfe
Windows XP Professional x64 Edition (optionally with SP2):
http://www.microsoft.com/downloads/de...=ef2e0b48-1bde-4ccc-8f40-2918c2568b2b
Windows Server 2003 SP1/SP2:
http://www.microsoft.com/downloads/de...=0a983ffb-4f5a-4b78-9bf5-813dcc5df8d3
Windows Server 2003 x64 Edition (optionally with SP2):
http://www.microsoft.com/downloads/de...=334252db-4a7a-4161-bb71-2a20c0b5bd93
-- AD LDS --
Windows Server 2008 for 32-bit Systems:
http://www.microsoft.com/downloads/de...=2981156e-2e2f-469e-91be-da127d50f3fc
Windows Server 2008 for x64-based Systems:
http://www.microsoft.com/downloads/de...=b5cfe6f4-c5ba-4be9-a6b8-9381c40c85aa
Provided and/or discovered by:
The vendor credits Alex Matthews and John Guzik of Securify.
Original Advisory:
MS08-035 (KB953235):
http://www.microsoft.com/technet/security/Bulletin/MS08-035.mspx
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
