MS07-039: Microsoft Windows Active Directory LDAP Service Remote Code Execution (926122)
Critical Nessus Plugin ID 25690
SynopsisIt is possible to execute code on the remote host.
DescriptionThe remote version of Active Directory contains a flaw in the LDAP request handler code that allows an attacker to execute code on the remote host.
On Windows 2000 an anonymous attacker can exploit this flaw by sending a specially crafted LDAP packet. On Windows 2003 valid credentials are needed to exploit it.
Additionally, the Active Directory is affected by a remote denial of service vulnerability.
SolutionMicrosoft has released a set of patches for Windows 2000 and 2003.