MS09-066: Vulnerability in Active Directory Could Allow Denial of Service (973309)
High Nessus Plugin ID 42440
SynopsisThe installed version of Active Directory is affected by a denial of service vulnerability.
DescriptionThe installed version of Microsoft Active Directory / Active Directory Application Mode / Active Directory Lightweight Directory Service has a buffer overflow vulnerability. By sending specially crafted LDAP or LDAPS requests, a remote attacker can exhaust stack space and cause the affected host to stop responding until it is restarted.
SolutionMicrosoft has released a set of patches for Windows 2000, XP, 2003, and 2008.