PT-2008-6258 · Microsoft · Windows Server 2003+2

Published

2008-11-17

Updated

2018-10-30

CVE-2008-5112

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Microsoft Windows 2000 SP4 Microsoft Windows Server 2003 SP1 Microsoft Windows Server 2003 SP2

Description The issue concerns the LDAP server in Active Directory, which responds differently to failed bind attempts based on whether a user account exists and is permitted to login. This behavior allows remote attackers to enumerate valid usernames by sending a series of LDAP bind requests.

Recommendations For Microsoft Windows 2000 SP4, consider restricting access to the LDAP server to minimize the risk of exploitation. For Microsoft Windows Server 2003 SP1, restrict access to the LDAP server to minimize the risk of exploitation. For Microsoft Windows Server 2003 SP2, restrict access to the LDAP server to minimize the risk of exploitation.

Exploit

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2008-5112

Affected Products

Active Directory

Windows 2000

Windows Server 2003

PT-2008-6258 · Microsoft · Windows Server 2003+2

CVE-2008-5112

Weakness Enumeration

Related Identifiers

Affected Products

References · 6