Home / bulletins MS08-035 – Important: Vulnerability in Active Directory Could Allow Denial of Service (953235) - Version:1.1
Posted on 22 July 2008
ImportantSeverity Rating: Important - Revision Note: V1.1 (June 11, 2008): Removed erroneous known issues entry from the Update FAQ. Also added ports to be blocked in the Workarounds for Active Directory Vulnerability - CVE-2008-1445 section.Summary: This security update resolves a privately reported vulnerability in implementations of Active Directory on Microsoft Windows 2000 Server, Windows Server 2003, and Windows Server 2008; Active Directory Application Mode (ADAM) when installed on Windows XP Professional and Windows Server 2003; and Active Directory Lightweight Directory Service (AD LDS) when installed on Windows Server 2008. The vulnerability could be exploited to allow an attacker to cause a denial of service condition. On Windows XP Professional, Windows Server 2003, and Windows Server 2008, an attacker must have valid logon credentials to exploit this vulnerability. An attacker who successfully exploited this vulnerability could cause the system to stop responding or automatically restart.
Other versions
- MS08-035 - Version: 1.0
- MS08-035 - Version: 1.0
- MS08-035 - Version: 1.1
- MS08-035 - Version: 1.1