Microsoft Active Directory Zero Page Length Query Vulnerability
Microsoft Active Directory is reportedly vulnerable to a query that will result in Active Directory to cease responding.
The vulnerability has been reported for querying Active Directory servers using Kerberos V authentication via GSS-API.
A LDAP client is able to specify the number of entries to be retrieved by setting a page length to a smaller number. The reported vulnerability occurs when the page length value is set to zero and the client makes a large request.
Such a request will cause the vulnerable Active Directory server to hang causing a denial of service to occur.