Home / bulletins

MS08-060 – Critical: Vulnerability in Active Directory Could Allow Remote Code Execution (957280) - Version:1.0

Posted on 14 October 2008

There is an newer version: MS08-060 - Version: 1.1

Critical

Severity Rating: Critical - Revision Note: Bulletin published.Summary: This security update resolves a privately reported vulnerability in implementations of Active Directory on Microsoft Windows 2000 Server. The vulnerability could allow remote code execution if an attacker gains access to an affected network. This vulnerability only affects Microsoft Windows 2000 servers configured to be domain controllers. If a Microsoft Windows 2000 server has not been promoted to a domain controller, it will not be listening to Lightweight Directory Access Protocol (LDAP) or LDAP over SSL (LDAPS) queries, and will not be exposed to this vulnerability.

Link

Other versions

 

TOP