Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Remote file access >> Use LDAP search request to retrieve information from NT Directory Services


Vulnerability Assessment Details

Use LDAP search request to retrieve information from NT Directory Services

Vulnerability Assessment Summary
Use LDAP search request to retrieve information from NT Directory Services

Detailed Explanation for this Vulnerability Assessment

Summary :

It is possible to disclose LDAP information.

Description :

The directory base of the remote server is set to NULL. This permits information
to be enumerated without any prior knowledge of the directory structure.

Solution :

If pre-Windows 2000 compatibility is not required, remove
pre-Windows 2000 compatibility as follows :

- start cmd.exe
- execute the command :
net localgroup 'Pre-Windows 2000 Compatible Access' everyone /delete
- restart the remote host

Network Security Threat Level:

Low / CVSS Base Score : 2
(AV:R/AC:L/Au:NR/C:P/A:N/I:N/B:N)

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2004 David Kyger

Cables, Connectors


SERVER - Ubuntu Linux 22.04 LTS Installation Disk - USA picture

SERVER - Ubuntu Linux 22.04 LTS Installation Disk - USA

$5.85



Australia Windows / Linux Server 64 GB RAM + 3TB HDD + Unlimited Bandwidth  picture

Australia Windows / Linux Server 64 GB RAM + 3TB HDD + Unlimited Bandwidth

$113.06



EU VPS Windows / Linux Server 8GB RAM + 1TB HDD + Unlimited Bandwidth [ 1 Year ] picture

EU VPS Windows / Linux Server 8GB RAM + 1TB HDD + Unlimited Bandwidth [ 1 Year ]

$232.58



VPS Windows / Linux Server - 12GB  RAM, 4 Core, 1 TB HD, Unlimited bandwidth picture

VPS Windows / Linux Server - 12GB RAM, 4 Core, 1 TB HD, Unlimited bandwidth

$23.90



POGO Linux WEBWARE 1150 Rack-Mount Server Pentium 4 2.8GHz 512MB - No Drives picture

POGO Linux WEBWARE 1150 Rack-Mount Server Pentium 4 2.8GHz 512MB - No Drives

$199.99



Windows / Linux Server VPS - 4GB  RAM, 4 Core, 100GB HD, Unlimited bandwidth picture

Windows / Linux Server VPS - 4GB RAM, 4 Core, 100GB HD, Unlimited bandwidth

$14.30



Windows/ Linux VPS Server 1GB RAM + 20 GB HDD + Unlimited Bandwidth picture

Windows/ Linux VPS Server 1GB RAM + 20 GB HDD + Unlimited Bandwidth

$3.36



HP DL380 Generation 8 with (2) Intel E5-2670, 256GB RAM, (8) 300GB 10K HDD picture

HP DL380 Generation 8 with (2) Intel E5-2670, 256GB RAM, (8) 300GB 10K HDD

$1464.28



VPS Windows / Linux Server 8GB RAM + 1TB HDD + Unlimited Bandwidth  picture

VPS Windows / Linux Server 8GB RAM + 1TB HDD + Unlimited Bandwidth

$25.84



HP ProLiant BL465c G7 Server Blade 64GB RAM  picture

HP ProLiant BL465c G7 Server Blade 64GB RAM

$80.00



Discussions

No Discussions have been posted on this vulnerability.