[Forgot Password]
Login  Register Subscribe

23631

 
 

126951

 
 

99602

 
 

909

 
 

80198

 
 

109

Paid content will be excluded from the download.


Download | Alert*
OVAL

Active Directory Invalid Free Vulnerability

ID: oval:org.mitre.oval:def:6180Date: (C)2009-06-09   (M)2017-10-04
Class: VULNERABILITYFamily: windows




The LDAP service in Active Directory on Microsoft Windows 2000 SP4 does not properly free memory for LDAP and LDAPS requests, which allows remote attackers to execute arbitrary code via a request that uses hexadecimal encoding, whose associated memory is not released, related to a "DN AttributeValue," aka "Active Directory Invalid Free Vulnerability." NOTE: this issue is probably a memory leak.

Platform:
Microsoft Windows 2000
Product:
Active Directory
Reference:
CVE-2009-1138
CVE    1
CVE-2009-1138
CPE    4
cpe:/o:microsoft:windows_2000::sp4:server
cpe:/o:microsoft:windows_2000
cpe:/o:microsoft:windows_2000::sp4
cpe:/a:microsoft:active_directory
...

© 2013 SecPod Technologies