Vulnerabilities > CVE-2008-4023 - Resource Management Errors vulnerability in Microsoft Windows 2000
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Active Directory in Microsoft Windows 2000 SP4 does not properly allocate memory for (1) LDAP and (2) LDAPS requests, which allows remote attackers to execute arbitrary code via a crafted request, aka "Active Directory Overflow Vulnerability."
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 1 |
Common Weakness Enumeration (CWE)
Nessus
| NASL family | Windows : Microsoft Bulletins |
| NASL id | SMB_NT_MS08-060.NASL |
| description | The remote version of Active Directory contains a vulnerability when processing LDAP requests. An attacker can exploit this flaw to execute arbitrary code on the remote Active Directory server. |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 34405 |
| published | 2008-10-15 |
| reporter | This script is Copyright (C) 2008-2018 Tenable Network Security, Inc. |
| source | https://www.tenable.com/plugins/nessus/34405 |
| title | MS08-060: Microsoft Windows Active Directory LDAP(S) Request Handling Remote Overflow (957280) |
Oval
| accepted | 2008-11-24T04:00:22.138-05:00 | ||||
| class | vulnerability | ||||
| contributors |
| ||||
| definition_extensions |
| ||||
| description | Active Directory in Microsoft Windows 2000 SP4 does not properly allocate memory for (1) LDAP and (2) LDAPS requests, which allows remote attackers to execute arbitrary code via a crafted request, aka "Active Directory Overflow Vulnerability." | ||||
| family | windows | ||||
| id | oval:org.mitre.oval:def:6107 | ||||
| status | accepted | ||||
| submitted | 2008-10-14T13:33:00 | ||||
| title | Active Directory Overflow Vulnerability | ||||
| version | 69 |
Seebug
| bulletinFamily | exploit |
| description | BUGTRAQ ID: 31609 CVE(CAN) ID: CVE-2008-4023 Microsoft Windows是微软发布的非常流行的操作系统。 Microsoft Windows 2000 Server上的活动目录实现在接收特制LDAP或LDAPS请求时没有正确地分配内存,如果远程攻击者向服务器发送了特制的LDAP或LDAPS请求的话就可以触发缓冲区溢出,导致执行任意代码。 Microsoft Windows 2000 Server SP4 临时解决方法: * 在外围防火墙处阻止TCP 389和636端口。 厂商补丁: Microsoft --------- Microsoft已经为此发布了一个安全公告(MS08-060)以及相应补丁: MS08-060:Vulnerability in Active Directory Could Allow Remote Code Execution (957280) 链接:<a href=http://www.microsoft.com/technet/security/Bulletin/MS08-060.mspx?pf=true target=_blank>http://www.microsoft.com/technet/security/Bulletin/MS08-060.mspx?pf=true</a> 补丁下载: <a href=http://www.microsoft.com/downloads/details.aspx?familyid=8ed7bb9a-4b26-49d7-8c14-60226d2bc20d target=_blank>http://www.microsoft.com/downloads/details.aspx?familyid=8ed7bb9a-4b26-49d7-8c14-60226d2bc20d</a> |
| id | SSV:4245 |
| last seen | 2017-11-19 |
| modified | 2008-10-16 |
| published | 2008-10-16 |
| reporter | Root |
| title | Microsoft Windows活动目录LDAP请求缓冲区溢出漏洞(MS08-060) |
References
- http://marc.info/?l=bugtraq&m=122479227205998&w=2
- http://secunia.com/advisories/32242
- http://www.securityfocus.com/bid/31609
- http://www.securitytracker.com/id?1021042
- http://www.us-cert.gov/cas/techalerts/TA08-288A.html
- http://www.vupen.com/english/advisories/2008/2811
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-060
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45585
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6107