CVE-2008-0088

2008-02-1221:00:00

CWE-20

[email protected]

web.nvd.nist.gov

cve-2008-0088

active directory

microsoft windows

adam

ldap

denial of service

vulnerability

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:N/I:N/A:C

6.3 Medium

AI Score

Confidence

High

0.953 High

EPSS

Percentile

99.4%

JSON

Unspecified vulnerability in Active Directory on Microsoft Windows 2000 and Windows Server 2003, and Active Directory Application Mode (ADAM) on XP and Server 2003, allows remote attackers to cause a denial of service (hang and restart) via a crafted LDAP request.

Affected configurations

NVD

Node

microsoftwindows_2000

microsoftwindows_2000sp4

microsoftwindows_2003_serverMatchsp1

microsoftwindows_2003_serverMatchsp2

microsoftwindows_xp

CPENameOperatorVersion
microsoft:windows_2000microsoft windows 2000eq*
microsoft:windows_2003_servermicrosoft windows 2003 servereqsp1
microsoft:windows_2003_servermicrosoft windows 2003 servereqsp2
microsoft:windows_xpmicrosoft windows xpeq*

CPE	Name	Operator	Version
microsoft:windows_2000	microsoft windows 2000	eq	*
microsoft:windows_2003_server	microsoft windows 2003 server	eq	sp1
microsoft:windows_2003_server	microsoft windows 2003 server	eq	sp2
microsoft:windows_xp	microsoft windows xp	eq	*