[Am-info] Oh boys and girls.....would ya look at this vulnerability!
Fred A. Miller
fmiller@lightlink.com
Wed, 2 Jul 2003 23:46:41 -0400
And, MickySoft has bragged about how well it's designed, etc. Ya right.
=46red
Windows 2000 Server Active Directory Buffer Overflow Vulnerability
READ ONLINE:
http://www.secunia.com/advisories/9171/
CRITICAL:
Moderately critical
IMPACT:
DoS
WHERE:
=46rom local network
OPERATING SYSTEM:
Microsoft Windows 2000 Server
DESCRIPTION:
A vulnerability has been identified in Windows 2000 Server, which can
be exploited by malicious people to cause a DoS (Denial of Service)
on a vulnerable system.
The vulnerablity is caused due to a boundary error in Active
Directory. This can be exploited by sending a specially crafted LDAP
v3 search request containing about 1000 "AND" or "OR" operators to a
vulnerable Active Directory server, which will crash the "Lsass.exe"
service and therefore automatically reboot the system within 30
seconds.
Reportedly, the vulnerability only affects Windows 2000 Server with
Active Directory.
SOLUTION:
Reportedly, this has been fixed in Windows 2000 Service Pack 4:
http://www.microsoft.com/Windows2000/downloads/servicepacks/sp4/
REPORTED BY / CREDITS:
Eduardo Arias, Gabriel Becedillas, Ricardo Quesada, and Damian Saura
(Core Security Technologies).
ORIGINAL ADVISORY:
http://www.coresecurity.com/common/showdoc.php?idx=3D351&idxseccion=3D10
OTHER REFERENCES:
Microsoft knowledge base article describing the vulnerability:
http://support.microsoft.com/default.aspx?kbid=3D319709
=2D-=20
Planet Earth - a subsidiary of Microsoft=AE.
We have no bugs in our software, Never!,=20
We do have undocumented added features,
that you will find amusing, at no added cost,=20
to you, at this time.