|
|
CVE Reference: CVE-2007-3028 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2007-3028 |
|
|
Description: The LDAP service in Windows Active Directory in Microsoft Windows 2000 Server SP4 does not properly check "the number of convertible attributes", which allows remote attackers to cause a denial of service (service unavailability) via a crafted LDAP request, related to "client sent LDAP request logic," aka "Windows Active Directory Denial of Service Vulnerability". NOTE: this is probably a different issue than CVE-2007-0040. |
|
|
CVE Status: Candidate |
|
|
References: ST 1018355 SAID Secunia Advisory: SA26002 OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1856 MS http://www.microsoft.com/technet/security/Bulletin/ms07-039.mspx HP http://archive.cert.uni-stuttgart.de/bugtraq/2007/07/msg00254.html CERT-VN 348953 CERT http://www.us-cert.gov/cas/techalerts/TA07-191A.html BID 24796 |
|
| Return to the previous page. |
