CVE-2008-0088

Name of the Vulnerable Software and Affected Versions Microsoft Windows 2000 Microsoft Windows Server 2003 Microsoft Windows XP with Active Directory Application Mode (ADAM)

Description The issue allows remote attackers to cause a denial of service, resulting in the system hanging and restarting, via a crafted LDAP request to Active Directory or Active Directory Application Mode (ADAM).

Recommendations For Microsoft Windows 2000, update to a version that includes the fix for this issue. For Microsoft Windows Server 2003, update to a version that includes the fix for this issue. For Microsoft Windows XP with Active Directory Application Mode (ADAM), update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the LDAP endpoint to minimize the risk of exploitation.