This script is Copyright (C) 2007-2014 Tenable Network Security, Inc.
It is possible to execute code on the remote host.
The remote version of Active Directory contains a flaw in the LDAP
request handler code that allows an attacker to execute code on the
On Windows 2000 an anonymous attacker can exploit this flaw by sending
a specially crafted LDAP packet. On Windows 2003 valid credentials are
needed to exploit it.
Additionally, the Active Directory is affected by a remote denial of
See also :
Microsoft has released a set of patches for Windows 2000 and 2003.
Risk factor :
Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 7.4
Public Exploit Available : false