[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Denial of Service Vulnerability in Active Directory - MS09-066

ID: oval:org.secpod.oval:def:2634Date: (C)2011-10-31   (M)2023-12-14
Class: PATCHFamily: windows




The host is missing an important security update according to Microsoft security bulletin, MS09-066. The update is required to fix denial of service vulnerability. A flaw is present in the Microsoft Active Directory directory service, Active Directory Application Mode (ADAM), and Active Directory Lightweight Directory Service (AD LDS), which fails to process malformed LDAP or LDAPS requests. Successful exploitation could allow an attacker to cause a denial of service condition due to stack space exhaustion during execution of such malformed requests.

Platform:
Microsoft Windows XP
Microsoft Windows 2000
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Product:
Active Directory
Active Directory Application Mode
Reference:
MS09-066
CVE-2009-1928
CVE    1
CVE-2009-1928
CPE    21
cpe:/o:microsoft:windows_server_2008:::x64
cpe:/o:microsoft:windows_server_2008:::x86
cpe:/o:microsoft:windows_xp::sp3:x86
cpe:/a:microsoft:active_directory_application_mode
...
XCCDF    5
xccdf_com.secpod_benchmark_microsoft-windows-2000
xccdf_com.secpod_benchmark_microsoft-windows-server-2008
xccdf_com.secpod_benchmark_microsoft-windows-server-2003
xccdf_com.secpod_benchmark_microsoft-windows-xp
...

© SecPod Technologies