CVE-2008-0088

EPSS 65.98%
Veröffentlicht 12.02.2008 21:00:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle secure@microsoft.com
Teams Watchlist Login
Unerledigt Login

Unspecified vulnerability in Active Directory on Microsoft Windows 2000 and Windows Server 2003, and Active Directory Application Mode (ADAM) on XP and Server 2003, allows remote attackers to cause a denial of service (hang and restart) via a crafted LDAP request.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 11

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Microsoft ≫ Windows 2000

Microsoft ≫ Windows 2000 Updatesp4

Microsoft ≫ Windows 2003 Server Versionsp1

Microsoft ≫ Windows 2003 Server Versionsp2

Microsoft ≫ Windows Xp

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	65.98%	0.985

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	6.8	8	6.9	AV:N/AC:L/Au:S/C:N/I:N/A:C

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://marc.info/?l=bugtraq&m=120361015026386&w=2

http://www.us-cert.gov/cas/techalerts/TA08-043C.html

US Government Resource

http://secunia.com/advisories/28764

http://www.securityfocus.com/bid/27638

http://www.securitytracker.com/id?1019382

http://www.vupen.com/english/advisories/2008/0505/references

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-003

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5181

https://nvd.nist.gov/vuln/detail/CVE-2008-0088

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2008-0088

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2008-0088

EUVD