LDAP: Microsoft Active Directory LSASS Recursive Stack Overflow Denial of Service
This signature detects attempts to exploit a known vulnerability against Microsoft Active Directory LSASS. It exists in implementations of Active Directory on Microsoft Windows 2000 and Windows Server 2003. The vulnerability also exists in implementations of Active Directory Application Mode (ADAM) when installed on Windows XP and Windows Server 2003. A successful attack can result in a denial-of-service condition.
Extended Description
Microsoft Active Directory is prone to a denial-of-service vulnerability. An attacker can exploit this issue to crash the server, denying access to legitimate users.
Affected Products
Avaya messaging_application_server,Microsoft windows_xp_media_center_edition
Short Name
LDAP:RECURSIVE-DOS
Severity
Minor
Recommended
False
Recommended Action
Close Server
Category
LDAP
Keywords
Active CVE-2009-1928 Denial Directory LSASS Microsoft Overflow Recursive Service Stack of
Release Date
11/10/2009
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Microsoft
Avaya
CVSS Score
7.8