[NT] Vulnerability in Active Directory Allows Denial of Service (MS08-035)
- From: SecuriTeam <support@xxxxxxxxxxxxxx>
- Date: 15 Jun 2008 15:15:10 +0200
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com
- - promotion
The SecuriTeam alerts list - Free, Accurate, Independent.
Get your security news from a reliable source.
http://www.securiteam.com/mailinglist.html
- - - - - - - - -
Vulnerability in Active Directory Allows Denial of Service (MS08-035)
------------------------------------------------------------------------
SUMMARY
This security update resolves a privately reported vulnerability in
implementations of Active Directory on Microsoft Windows 2000 Server,
Windows Server 2003, and Windows Server 2008; Active Directory Application
Mode (ADAM) when installed on Windows XP Professional and Windows Server
2003; and Active Directory Lightweight Directory Service (AD LDS) when
installed on Windows Server 2008. The vulnerability could be exploited to
allow an attacker to cause a denial of service condition. On Windows XP
Professional, Windows Server 2003, and Windows Server 2008, an attacker
must have valid logon credentials to exploit this vulnerability. An
attacker who successfully exploited this vulnerability could cause the
system to stop responding or automatically restart.
This security update is rated Important for all supported editions of
Microsoft Windows 2000 Server, and rated Moderate for select editions of
Windows XP Professional, Windows Server 2003, and Windows Server 2008. For
more information, see the subsection, Affected and Non-Affected Software,
in this section.
DETAILS
Affected Software:
* Microsoft Windows 2000 Server Service Pack 4 -
<http://www.microsoft.com/downloads/details.aspx?FamilyID=53438880-9ea9-4975-9b85-2a1d3d232793> Active Directory (KB949014) - Denial of Service - Important - MS08-003
* Windows XP Professional Service Pack 2 -
<http://www.microsoft.com/downloads/details.aspx?FamilyID=7d6aec31-cfb4-470c-983e-78c6a3ebabfe> ADAM (KB949269) - Denial of Service - Moderate - MS08-003
* Windows XP Professional Service Pack 3 -
<http://www.microsoft.com/downloads/details.aspx?FamilyID=7d6aec31-cfb4-470c-983e-78c6a3ebabfe> ADAM (KB949269) - Denial of Service - Moderate - None
* Windows XP Professional x64 Edition and Windows XP Professional x64
Edition Service Pack 2 -
<http://www.microsoft.com/downloads/details.aspx?FamilyID=ef2e0b48-1bde-4ccc-8f40-2918c2568b2b> ADAM (KB949269) - Denial of Service - Moderate - MS08-003
* Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack
2 -
<http://www.microsoft.com/downloads/details.aspx?FamilyID=a4aed117-3c76-4d80-b50e-8e07e2ef2f7d> Active Directory (KB949014) - Denial of Service - Moderate - MS08-003
* Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack
2 -
<http://www.microsoft.com/downloads/details.aspx?FamilyID=0a983ffb-4f5a-4b78-9bf5-813dcc5df8d3> ADAM (KB949269) - Denial of Service - Moderate - MS08-003
* Windows Server 2003 x64 Edition and Windows Server 2003 x64 Edition
Service Pack 2 -
<http://www.microsoft.com/downloads/details.aspx?FamilyID=8298a6e4-d3e2-48ea-ac29-aa4dc5a8ec77> Active Directory (KB949014) - Denial of Service - Moderate - MS08-003
* Windows Server 2003 x64 Edition and Windows Server 2003 x64 Edition
Service Pack 2 -
<http://www.microsoft.com/downloads/details.aspx?FamilyID=334252db-4a7a-4161-bb71-2a20c0b5bd93> ADAM (KB949269) - Denial of Service - Moderate - MS08-003
* Windows Server 2003 with SP1 for Itanium-based Systems and Windows
Server 2003 with SP2 for Itanium-based Systems -
<http://www.microsoft.com/downloads/details.aspx?FamilyID=f6bf4b85-b91d-4378-a356-cd11f12cbbfd> Active Directory (KB949014) - Denial of Service - Moderate - MS08-003
* Windows Server 2008 for 32-bit Systems* -
<http://www.microsoft.com/downloads/details.aspx?FamilyID=2981156e-2e2f-469e-91be-da127d50f3fc> Active Directory (KB949014) - Denial of Service - Moderate - None
* Windows Server 2008 for 32-bit Systems* -
<http://www.microsoft.com/downloads/details.aspx?FamilyID=2981156e-2e2f-469e-91be-da127d50f3fc> AD LDS (KB949014) - Denial of Service - Moderate - None
* Windows Server 2008 for x64-based Systems* -
<http://www.microsoft.com/downloads/details.aspx?FamilyID=b5cfe6f4-c5ba-4be9-a6b8-9381c40c85aa> Active Directory (KB949014) - Denial of Service - Moderate - None
* Windows Server 2008 for x64-based Systems* -
<http://www.microsoft.com/downloads/details.aspx?FamilyID=b5cfe6f4-c5ba-4be9-a6b8-9381c40c85aa> AD LDS (KB949014) - Denial of Service - Moderate - None
*For supported editions of Windows Server 2008, the same severity rating
applies whether or not installed using the Server Core installation
option. For more information on this installation option, see Server Core.
Note that the Server Core installation option does not apply to certain
editions of Windows Server 2008; see Compare Server Core Installation
Options.
Non-Affected Software:
* Windows 2000 Professional Service Pack 4
* Windows XP Home Service Pack 2
* Windows XP Tablet Edition Service Pack 2
* Windows XP Media Center Edition Service Pack 2
* Windows Vista and Windows Vista Service Pack 1
* Windows Vista x64 Edition and Windows Vista x64 Edition Service Pack 1
* Windows Server 2008 for Itanium-based Systems
Note These editions of Windows are not affected because they do not
include ADAM or the Active Directory server component.
Active Directory Vulnerability - CVE-2008-1445
A denial of service vulnerability exists in implementations of Active
Directory on Microsoft Windows 2000 Server, Windows Server 2003, and
Windows Server 2008. The vulnerability also exists in implementations of
Active Directory Application Mode (ADAM) when installed on Windows XP and
Windows Server 2003 and Active Directory Lightweight Directory Services
(AD LDS) when installed on Windows Server 2008. The vulnerability is due
to insufficient validation of specially crafted LDAP requests. An attacker
who successfully exploited this vulnerability could cause the computer to
stop responding and automatically restart.
CVE Information:
<http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1445>
CVE-2008-1445
ADDITIONAL INFORMATION
The information has been provided by Microsoft Product Security.
The original article can be found at:
<http://www.microsoft.com/technet/security/bulletin/ms08-035.mspx>
http://www.microsoft.com/technet/security/bulletin/ms08-035.mspx
========================================
This bulletin is sent to members of the SecuriTeam mailing list.
To unsubscribe from the list, send mail with an empty subject line and body to: list-unsubscribe@xxxxxxxxxxxxxx
In order to subscribe to the mailing list, simply forward this email to: list-subscribe@xxxxxxxxxxxxxx
====================
====================
DISCLAIMER:
The information in this bulletin is provided "AS IS" without warranty of any kind.
In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.
- Prev by Date: [NT] Vulnerability in WINS Allows Elevation of Privilege (MS08-034)
- Next by Date: [NT] Vulnerabilities in Pragmatic General Multicast (PGM) Allows Denial of Service (MS08-036)
- Previous by thread: [NT] Vulnerability in WINS Allows Elevation of Privilege (MS08-034)
- Next by thread: [NT] Vulnerabilities in Pragmatic General Multicast (PGM) Allows Denial of Service (MS08-036)
- Index(es):
Relevant Pages
|
