CVE-2008-1445

Microsoft Windows Active Directory - Authenticated Denial of Service via Crafted LDAP Request

Title source: llm
STIX 2.1

Description

Active Directory on Microsoft Windows 2000 Server SP4, XP Professional SP2 and SP3, Server 2003 SP1 and SP2, and Server 2008 allows remote authenticated users to cause a denial of service (system hang or reboot) via a crafted LDAP request.

References (9)

Core 9
Core References
Broken Link vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2008/1782
Patch vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/29584
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1020229
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/493338/100/0/threaded
Third Party Advisory, US Government Resource third-party-advisory x_refsource_cert
http://www.us-cert.gov/cas/techalerts/TA08-162B.html
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/493342/100/0/threaded
Permissions Required, Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/30586
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4910

Scores

EPSS 0.2714
EPSS Percentile 97.8%

Details

CWE
CWE-20
Status published
Products (4)
microsoft/windows-nt 2008 (2 CPE variants)
microsoft/windows-nt xp sp3
microsoft/windows_2003_server (6 CPE variants)
microsoft/windows_xp
Published Jun 12, 2008
Tracked Since Feb 18, 2026