|Category:||Remote file access|
|Title:||Use LDAP search request to retrieve information from NT Directory Services|
|Summary:||It is possible to disclose LDAP information.|
It is possible to disclose LDAP information.
The directory base of the remote server is set
to NULL. This allows information to be enumerated without any prior knowledge of
the directory structure.
If pre-Windows 2000 compatibility is not required, remove
pre-Windows 2000 compatibility as follows :
- start cmd.exe
- execute the command :
net localgroup 'Pre-Windows 2000 Compatible Access' everyone /delete
- restart the remote host
|Copyright||Copyright (C) 2004 David Kyger|
|This is only one of 87302 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.