Vulnerability Description
The LDAP service in Microsoft Active Directory, Active Directory Application Mode (ADAM), Active Directory Lightweight Directory Service (AD LDS), and Active Directory Services allows remote attackers to cause a denial of service (memory consumption and service outage) via a crafted query, aka "Memory Consumption Vulnerability."
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Active Directory | - |
| Microsoft | Active Directory Application Mode | - |
| Microsoft | Active Directory Lightweight Directory Service | - |
| Microsoft | Active Directory Services | - |
Related Weaknesses (CWE)
References
- http://www.us-cert.gov/ncas/alerts/TA13-100AUS Government Resource
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-03
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- http://www.us-cert.gov/ncas/alerts/TA13-100AUS Government Resource
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-03
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
FAQ
What is CVE-2013-1282?
CVE-2013-1282 is a vulnerability with a CVSS score of 5.0 (MEDIUM). The LDAP service in Microsoft Active Directory, Active Directory Application Mode (ADAM), Active Directory Lightweight Directory Service (AD LDS), and Active Directory Services allows remote attackers...
How severe is CVE-2013-1282?
CVE-2013-1282 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-1282?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Active Directory, Microsoft Active Directory Application Mode, Microsoft Active Directory Lightweight Directory Service, Microsoft Active Directory Services.