LDAP: Microsoft Active Directory LDAP Query Handling Denial of Service
This signature detects attempts to exploit a known vulnerability against Microsoft Active Directory. A successful attack can result in a denial-of-service condition.
Extended Description
Microsoft Windows is prone to a remote denial-of-service vulnerability because Microsoft Active Directory and ADAM (Active Directory Application Mode) fail to handle specially crafted Lightweight Directory Access Protocol (LDAP) requests. An attacker can exploit this issue to cause the affected application to stop responding, denying further service to legitimate users. Note that an attacker requires valid logon credentials to exploit this issue on Windows Server 2003 and Windows XP. This issue affects Active Directory on Microsoft Windows 2000 and Windows Server 2003. The issue affects ADAM when installed on Windows XP and Windows Server 2003.
Affected Products
Avaya messaging_application_server,Microsoft windows_2000_server
Short Name
LDAP:MS-AD-QUERY-DOS
Severity
Minor
Recommended
False
Recommended Action
Drop
Category
LDAP
Keywords
Active CVE-2008-0088 Denial Directory Handling LDAP Microsoft Query Service bid:27638 of
Release Date
07/08/2013
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3339
False Positive
Unknown
Vendors
Nortel_networks
Microsoft
Avaya
CVSS Score
6.8