MS10-068 - Important: Vulnerability in Local Security Authority Subsystem Service Could Allow Elevat

News

Extraordinary Robot
Robot
Joined
Jun 27, 2006
Messages
23,048
Bulletin Severity Rating:Important - This security update resolves a privately reported vulnerability in Active Directory, Active Directory Application Mode (ADAM), and Active Directory Lightweight Directory Service (AD LDS). The vulnerability could allow elevation of privilege if an authenticated attacker sent specially crafted Lightweight Directory Access Protocol (LDAP) messages to a listening LSASS server. In order to successfully exploit this vulnerability, an attacker must have a member account within the target Windows domain. However, the attacker does not need to have a workstation joined to the Windows domain.

Link Removed due to 404 Error
 


Back
Top