QwikSec

Security Database

CVE

CWE

Training

CVE-2017-0166

Published: Apr 12, 2017

Modified: Aug 5, 2024

PUBLISHED

Description

An elevation of privilege vulnerability exists in Windows when LDAP request buffer lengths are improperly calculated. In a remote attack scenario, an attacker could exploit this vulnerability by running a specially crafted application to send malicious traffic to a Domain Controller, aka "LDAP Elevation of Privilege Vulnerability."

Vendor	Product	Versions
Microsoft Corporation	LDAP	affected `Windows`

References

vdb-entry

x_refsource_SECTRACK

vdb-entry

x_refsource_BID

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0166

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.