Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:1304
HistoryFeb 21, 2001 - 12:00 a.m.

Microsoft Security Bulletin MS01-011

2001-02-2100:00:00
vulners.com
27
JSON

Title: Malformed Request to Domain Controller can Cause Denial
of Service
Date: 20 February 2001
Software: Windows 2000 Server, Advanced Server and Datacenter
Server
Impact: Denial of Service
Bulletin: MS01-011

Microsoft encourages customers to review the Security Bulletin at:
http://www.microsoft.com/technet/security/bulletin/MS01-011.asp.

Issue:

A core service running on all Windows 2000 domain controllers (but
not on any other machines) contains a flaw affecting how it processes
a certain type of invalid service request. Specifically, the service
should handle the request at issue here by determining that it is
invalid and simply dropping it; in fact, the service performs some
resource-intensive processing and then sends a response.

If an attacker sent a continuous stream of such requests to an
affected machine, it could consume most or all of the machine's CPU
availability. This could cause the domain controller to process
requests for service slowly or not at all, and could limit the number
of new logons the machine could process and the number of Kerberos
tickets that could be issued.

Mitigating Factors:

  • The machine would automatically resume normal processing
    as soon as the stream of requests ceased.
  • Although the attacker could, in theory, use the vulnerability
    to completely deny service to network users, in practice the
    attack rarely consumes more than 75% of the available CPU
    resources.
  • Users who were already logged on and were using previously
    issued Kerberos tickets would not be affected by domain
    controller unavailability.
  • If there were multiple domain controllers on the domain, the
    unaffected machines could pick up the other machine's load.
  • If normal security practices have been followed, Internet
    users would be prevented by firewalling and other measures
    from levying requests directly to domain controllers.

Patch Availability:

THE INFORMATION PROVIDED IN THE MICROSOFT KNOWLEDGE BASE IS PROVIDED
"AS IS" WITHOUT WARRANTY OF ANY KIND. MICROSOFT DISCLAIMS ALL
WARRANTIES, EITHER EXPRESS OR IMPLIED, INCLUDING THE WARRANTIES OF
MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. IN NO EVENT
SHALL MICROSOFT CORPORATION OR ITS SUPPLIERS BE LIABLE FOR ANY
DAMAGES WHATSOEVER INCLUDING DIRECT, INDIRECT, INCIDENTAL,
CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL DAMAGES, EVEN IF
MICROSOFT CORPORATION OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE
POSSIBILITY OF SUCH DAMAGES. SOME STATES DO NOT ALLOW THE EXCLUSION
OR LIMITATION OF LIABILITY FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES SO
THE FOREGOING LIMITATION MAY NOT APPLY.

JSON