Denial of Service Vulnerability in Active Directory - MS09-066ID: oval:org.secpod.oval:def:2634 | Date: (C)2011-10-31 (M)2023-12-14 |
Class: PATCH | Family: windows |
The host is missing an important security update according to Microsoft security bulletin, MS09-066. The update is required to fix denial of service vulnerability. A flaw is present in the Microsoft Active Directory directory service, Active Directory Application Mode (ADAM), and Active Directory Lightweight Directory Service (AD LDS), which fails to process malformed LDAP or LDAPS requests. Successful exploitation could allow an attacker to cause a denial of service condition due to stack space exhaustion during execution of such malformed requests.
Platform: |
Microsoft Windows XP |
Microsoft Windows 2000 |
Microsoft Windows Server 2003 |
Microsoft Windows Server 2008 |
Product: |
Active Directory |
Active Directory Application Mode |