{"vuid":"VU#348953","idnumber":"348953","name":"Microsoft Windows Active Directory fails to properly validate client sent LDAP requests","keywords":["Microsoft","Windows","Active Directory","DoS","denial of service","client-sent LDAP requests","ms07-jul"],"overview":"Microsoft Windows Active Directory fails to properly validate client-sent LDAP requests and may result in a denial of service condition.","clean_desc":"Microsoft Windows Active Directory contains a vulnerability in the way that the LDAP service validates the number of convertible attributes in the client-sent request. By sending a specially crafted LDAP request to a server running Active Directory, an attacker may be able to cause the server to stop responding.","impact":"A remote attacker may be able to cause a denial of service condition.","resolution":"Apply an Update Microsoft has released updates in Microsoft Security Bulletin MS07-039 to address this issue.","workarounds":"Workaround Microsoft suggests blocking port 389/tcp and port 3268/tcp at the firewall to prevent exploitation of this vulnerability. Please see Microsoft Security Bulletin MS07-039 for further information.","sysaffected":"","thanks":"This vulnerability was reported in Microsoft Security Bulletin \nMS07-039\n. Microsoft credits Peter Winter-Smith of NGSSoftware for reporting the vulnerability to them.","author":"This document was written by Katie Steiner.","public":["h","t","t","p",":","/","/","w","w","w",".","m","i","c","r","o","s","o","f","t",".","c","o","m","/","t","e","c","h","n","e","t","/","s","e","c","u","r","i","t","y","/","b","u","l","l","e","t","i","n","/","m","s","0","7","-","0","3","9",".","m","s","p","x"],"cveids":["CVE-2007-3028"],"certadvisory":"","uscerttechnicalalert":null,"datecreated":"2007-07-10T18:37:36Z","publicdate":"2007-07-10T00:00:00Z","datefirstpublished":"2007-07-11T20:06:23Z","dateupdated":"2007-07-11T20:13:40Z","revision":8,"vrda_d1_directreport":"0","vrda_d1_population":"4","vrda_d1_impact":"3","cam_widelyknown":"15","cam_exploitation":"0","cam_internetinfrastructure":"5","cam_population":"15","cam_impact":"5","cam_easeofexploitation":"14","cam_attackeraccessrequired":"1","cam_scorecurrent":"0.39375","cam_scorecurrentwidelyknown":"0.4921875","cam_scorecurrentwidelyknownexploited":"0.8859375","ipprotocol":"","cvss_accessvector":"","cvss_accesscomplexity":"","cvss_authentication":null,"cvss_confidentialityimpact":"","cvss_integrityimpact":"","cvss_availabilityimpact":"","cvss_exploitablity":null,"cvss_remediationlevel":"","cvss_reportconfidence":"","cvss_collateraldamagepotential":"","cvss_targetdistribution":"","cvss_securityrequirementscr":"","cvss_securityrequirementsir":"","cvss_securityrequirementsar":"","cvss_basescore":"","cvss_basevector":"","cvss_temporalscore":"","cvss_environmentalscore":"","cvss_environmentalvector":"","metric":0.39375,"vulnote":null}