← back
CVE-2008-5112

CVE-2008-5112

EPSS 20.0%
The LDAP server in Active Directory in Microsoft Windows 2000 SP4 and Server 2003 SP1 and SP2 responds differently to a failed bind attempt depending on whether the user account exists and is permitted to login, which allows remote attackers to enumerate valid usernames via a series of LDAP bind requests, as demonstrated by ldapuserenum.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/32586unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://labs.portcullis.co.uk/application/ldapuserenum/https://exchange.xforce.ibmcloud.com/vulnerabilities/46628http://www.portcullis-security.com/294.phphttp://www.securityfocus.com/bid/32305