|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[sec-adv] Windows 2000 Server Active Directory Buffer Overflow Vulnerability
From: Secunia Security Advisories (sec-adv
secunia.com)
Date: Wed Jul 02 2003 - 14:24:04 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
TITLE:
Windows 2000 Server Active Directory Buffer Overflow Vulnerability
READ ONLINE:
http://www.secunia.com/advisories/9171/
CRITICAL:
Moderately critical
IMPACT:
DoS
WHERE:
From local network
OPERATING SYSTEM:
Microsoft Windows 2000 Server
DESCRIPTION:
A vulnerability has been identified in Windows 2000 Server, which can
be exploited by malicious people to cause a DoS (Denial of Service)
on a vulnerable system.
The vulnerablity is caused due to a boundary error in Active
Directory. This can be exploited by sending a specially crafted LDAP
v3 search request containing about 1000 "AND" or "OR" operators to a
vulnerable Active Directory server, which will crash the "Lsass.exe"
service and therefore automatically reboot the system within 30
seconds.
Reportedly, the vulnerability only affects Windows 2000 Server with
Active Directory.
SOLUTION:
Reportedly, this has been fixed in Windows 2000 Service Pack 4:
http://www.microsoft.com/Windows2000/downloads/servicepacks/sp4/
REPORTED BY / CREDITS:
Eduardo Arias, Gabriel Becedillas, Ricardo Quesada, and Damian Saura
(Core Security Technologies).
ORIGINAL ADVISORY:
http://www.coresecurity.com/common/showdoc.php?idx=351&idxseccion=10
OTHER REFERENCES:
Microsoft knowledge base article describing the vulnerability:
http://support.microsoft.com/default.aspx?kbid=319709
----------------------------------------------------------------------
Secunia recommends that you verify all advisories you receive, by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
Contact details:
Web : http://www.secunia.com/
E-mail : supportsecunia.com
Tel : +44 (0) 20 7016 2693
Fax : +44 (0) 20 7637 0419
----------------------------------------------------------------------
Unsubscribe: Secunia Security Advisories
----------------------------------------------------------------------
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]