VULHUB ™

Microsoft Active Directory is reportedly vulnerable to a query that will result in Active Directory to cease responding. The vulnerability has been reported for querying Active Directory servers using Kerberos V authentication via GSS-API. A LDAP client is able to specify the number of entries to be retrieved by setting a page length to a smaller number. The reported vulnerability occurs when the page length value is set to zero and the client makes a large request. Such a request will cause the vulnerable Active Directory server to hang causing a denial of service to occur.

Microsoft Active Directory is reportedly vulnerable to a query that will result in Active Directory to cease responding. The vulnerability has been reported for querying Active Directory servers using Kerberos V authentication via GSS-API. A LDAP client is able to specify the number of entries to be retrieved by setting a page length to a smaller number. The reported vulnerability occurs when the page length value is set to zero and the client makes a large request. Such a request will cause the vulnerable Active Directory server to hang causing a denial of service to occur.