- Description
- The LDAP service in Microsoft Active Directory, Active Directory Application Mode (ADAM), Active Directory Lightweight Directory Service (AD LDS), and Active Directory Services allows remote attackers to cause a denial of service (memory consumption and service outage) via a crafted query, aka "Memory Consumption Vulnerability."
- Source
- secure@microsoft.com
- NVD status
- Modified
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:N/I:N/A:P
- nvd@nist.gov
- CWE-20
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:active_directory:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C958B002-879C-4183-9D36-113FC5E7B0CD"
},
{
"criteria": "cpe:2.3:a:microsoft:active_directory_application_mode:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CE47323B-3238-49CC-81E9-F5E5C48ABFAC"
},
{
"criteria": "cpe:2.3:a:microsoft:active_directory_lightweight_directory_service:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E988C43E-C9C2-4ECC-8FF3-237ADE080691"
},
{
"criteria": "cpe:2.3:a:microsoft:active_directory_services:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "84EEB700-6B49-4E24-9506-3EEF3DCD788E"
}
],
"operator": "OR"
}
]
}
]