Title: Windows 2000 Kerberos LSA Memory Leak/DoS Vulnerability
Severity: MODERATE
Description:
Kerberos is an authentication service that issues a ticket when a user logs on to a particular server. It then passes the ticket on to other servers so that the user does not have to log on seperately in each domain.
The Microsoft Windows 2000 implementation of Kerberos possesses a vulnerability that allows a user to connect and then disconnect without reading from the socket. This will cause the LSA subsystem to leak memory. The LSA(Local Security Auhtority) maintains information about local security on a system, and provides services for translation between names and security identifiers. After approx. 4000 connections the service will stop accepting connections to TCP ports 88(Kerberos) and 464(kpassword). If the target is a domain controller, this will cause all domain authentication to seize. This must be remedied with a reboot.
This will not affect users who are logged on and using previously issued Kerberos tickets.
Affected Products:
- Avaya DefinityOne Media Servers
- Avaya IP600 Media Servers
- Avaya S3400 Message Application Server
- Avaya S8100 Media Servers
- Microsoft Windows 2000 Advanced Server
- Microsoft Windows 2000 Datacenter Server
- Microsoft Windows 2000 Server
- Microsoft Windows 2000 Server SP1
References:
- Microsoft: Microsoft Security Bulletin MS01-024
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
