A student discovers another flaw in Win2k

June 29, 2001

A couple of days ago an argentinian student released a tool designed to perform password attacks on Windows 2000 systems running the Lightweight Directory Access Protocol (LDAP). Using LDAP protocol users can access data in a directory such as Microsoft's Active Directory service.

Launching rapid attacks, an intruder makes attempts to log into an account by picking up the right password. A password "cracker" is a widespread intruder tool for guessing the passwords.

Microsoft advised admins of Win2k that because of a flaw in the operating system's method of accessing LDAP databases over secure socket layer (SSL) connections, intruders could exploit this bug to gain unauthorized access and change domain passwords, including the admin.

In its bulletin, the company warned administrators who provide LDAP over SSL sessions to patch their systems as soon as possible.

The patch can be found at http://support.Microsoft.com/directory