[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Securify bulletin: Microsoft Active Directory Denial-of-service

To: <bugtraq@xxxxxxxxxxxxxxxxx>, <full-disclosure@xxxxxxxxxxxxxxxxx>
Subject: Re: [Full-disclosure] Securify bulletin: Microsoft Active Directory Denial-of-service
From: "Michael Wojcik" <Michael.Wojcik@xxxxxxxxxxxxxx>
Date: Fri, 13 Jun 2008 11:31:30 -0700

> From: Securify Bulletins [mailto:bulletins@xxxxxxxxxxxx] 
> Sent: Friday, 13 June, 2008 12:44
> To: bugtraq@xxxxxxxxxxxxxxxxx; full-disclosure@xxxxxxxxxxxxxxxxx
>
> IV. WORKAROUNDS:
> 
>   Block TCP ports 389 and 3268 to your Active Directory 
> server from untrusted sources.

AD may also be listening on 636 for LDAP-over-SSL.

-- 
Michael Wojcik
Principal Software Systems Developer, Micro Focus

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] Securify bulletin: Microsoft Active Directory Denial-of-service
  - From: Nicolas RUFF

Prev by Date: Re: [Full-disclosure] Security/Hacking Paper Contest Win $100
Next by Date: [Full-disclosure] [TKADV2008-003] Sun Solaris SIOCSIPMSFILTER Kernel Integer Overflow
Previous by thread: [Full-disclosure] Securify bulletin: Microsoft Active Directory Denial-of-service
Next by thread: Re: [Full-disclosure] Securify bulletin: Microsoft Active Directory Denial-of-service
Index(es):
- Date
- Thread