Definition

Windows Active Directory Remote Code Execution Vulnerability

oval:org.mitre.oval:def:2012

The LDAP service in Windows Active Directory in Microsoft Windows 2000 Server SP4 Server 2003 SP1 and SP2 Server 2003 x64 Edition and SP2 and Server 2003 for Itanium-based Systems SP1 and SP2 allows remote attackers to execute arbitrary code via a crafted LDAP request with an unspecified number of "convertible attributes."

Family:

windows

Status:

ACCEPTED

Platform(s):

Microsoft Windows Server 2003
Microsoft Windows 2000

Class:

vulnerability

Reference(s):

CVE-2007-0040

Product(s):