MS07-039: Vulnerability in Windows Active Directory Could Allow Remote Code Execution (926122) (uncredentialed check)

Critical Nessus Plugin ID 25699


It is possible to execute code on the remote host.


The remote version of Active Directory contains a flaw in the LDAP request handler code that may allow an attacker to execute code on the remote host.

On Windows 2000, an anonymous attacker can exploit this flaw by sending a specially crafted LDAP packet.

Additionally, Active Directory is affected by a remote denial of service vulnerability.


Microsoft has released a set of patches for Windows 2000.

See Also

Plugin Details

Severity: Critical

ID: 25699

File Name: smb_kb926122.nasl

Version: $Revision: 1.24 $

Type: remote

Agent: windows

Family: Windows

Published: 2007/07/11

Modified: 2017/08/30

Dependencies: 10785, 20870

Risk Information

Risk Factor: Critical


Base Score: 10

Temporal Score: 7.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/o:microsoft:windows

Required KB Items: Host/OS/smb

Exploit Available: false

Exploit Ease: No known exploits are available

Patch Publication Date: 2007/07/10

Vulnerability Publication Date: 2007/07/11

Reference Information

CVE: CVE-2007-3028, CVE-2007-0040

BID: 24796, 24800

OSVDB: 35960, 35961

MSFT: MS07-039

MSKB: 926122