CVE-2008-5112

Name of the Vulnerable Software and Affected Versions Microsoft Windows 2000 SP4 Microsoft Windows Server 2003 SP1 Microsoft Windows Server 2003 SP2

Description The issue concerns the LDAP server in Active Directory, which responds differently to failed bind attempts based on whether a user account exists and is permitted to login. This behavior allows remote attackers to enumerate valid usernames by sending a series of LDAP bind requests.

Recommendations For Microsoft Windows 2000 SP4, consider restricting access to the LDAP server to minimize the risk of exploitation. For Microsoft Windows Server 2003 SP1, restrict access to the LDAP server to minimize the risk of exploitation. For Microsoft Windows Server 2003 SP2, restrict access to the LDAP server to minimize the risk of exploitation.