CVE-2008-0088

EPSS 65.98%
Published 12.02.2008 21:00:00
Last modified 09.04.2025 00:30:58
Source secure@microsoft.com
Teams watchlist Login
Open Login

Unspecified vulnerability in Active Directory on Microsoft Windows 2000 and Windows Server 2003, and Active Directory Application Mode (ADAM) on XP and Server 2003, allows remote attackers to cause a denial of service (hang and restart) via a crafted LDAP request.

Affected products Warnungen 0 Metrics 2 CWE 1 References 11

Data is provided by the National Vulnerability Database (NVD)

Microsoft ≫ Windows 2000

Microsoft ≫ Windows 2000 Updatesp4

Microsoft ≫ Windows 2003 Server Versionsp1

Microsoft ≫ Windows 2003 Server Versionsp2

Microsoft ≫ Windows Xp

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	65.98%	0.985

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	6.8	8	6.9	AV:N/AC:L/Au:S/C:N/I:N/A:C

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://marc.info/?l=bugtraq&m=120361015026386&w=2

http://www.us-cert.gov/cas/techalerts/TA08-043C.html

US Government Resource

http://secunia.com/advisories/28764

http://www.securityfocus.com/bid/27638

http://www.securitytracker.com/id?1019382

http://www.vupen.com/english/advisories/2008/0505/references

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-003

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5181

https://nvd.nist.gov/vuln/detail/CVE-2008-0088

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2008-0088

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2008-0088

EUVD