CVE-2002-2328

2022-10-0316:23:49

mitre

www.cve.org

active directory

hang

ldap client

zero page length

denial of service

windows 2000

kerberos v authentication

gssapi

6.8 Medium

AI Score

Confidence

High

0.832 High

EPSS

Percentile

98.5%

JSON

Active Directory in Windows 2000, when supporting Kerberos V authentication and GSSAPI, allows remote attackers to cause a denial of service (hang) via an LDAP client that sets the page length to zero during a large request.

References

online.securityfocus.com/archive/1/273771

www.iss.net/security_center/static/9159.php

www.securityfocus.com/bid/4804