68 matches found
Exploit for Out-of-bounds Read in Microsoft
metasploit-ldapnightmare SafeBreaches CVE-2024-49113 POCLdapN...
Microsoft Patch Tuesday for February 2025 — Snort rules and prominent vulnerabilities
Microsoft has released its monthly security update for February of 2025 which includes 63 vulnerabilities affecting a range of products, including 4 that Microsoft marked as "critical" and one marked as "moderate." There are two notable "critical" vulnerabilities. The first is CVE-2025-21376, whi...
CVE-2025-21376 Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability
...
CVE-2025-21376
CVE-2025-21376 is described as a Windows LDAP remote code execution vulnerability. The connected AVLEONOV article lists CVE-2025-21376 under Windows LDAP RCE but provides no vendor/product/versions, root cause, exploit details, or patch information in the supplied documents. Therefore, no concret...
PT-2025-6319 · Microsoft · Windows Ldap +1
Name of the Vulnerable Software and Affected Versions: Windows Lightweight Directory Access Protocol LDAP affected versions not specified Description: The issue is related to the implementation of the Lightweight Directory Access Protocol LDAP in Windows, caused by synchronization errors when usi...
The vulnerability in the implementation of the LDAP service protocol for Microsoft Windows operating systems allows a perpetrator to execute arbitrary code.
The vulnerability of the LDAP Lightweight Directory Access Protocol implementation in Microsoft Windows operating systems is related to the use of memory after it is freed. Exploiting this vulnerability allows an attacker who operates remotely to execute arbitrary code...
The vulnerability in the implementation of the LDAP service protocol for Microsoft Windows operating systems allows a perpetrator to cause a service failure.
The vulnerability of the LDAP Lightweight Directory Access Protocol implementation in Microsoft Windows operating systems is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to cause service failures remotely...
CVE-2024-49127
CVE-2024-49127 is a Windows LDAP Remote Code Execution vulnerability in the LDAP component of Domain Controllers. The CVSS shows high impact (C/H, I/H, A/H) with network access required and no user interaction. The exploitation path involves an attacker obtaining network access to the DC and issu...
CVE-2024-49113
CVE-2024-49113 is a Windows LDAP Denial-of-Service vulnerability affecting the LDAP client. Public PoCs exist (e.g., LDAPNightmare) and show proof-of-concept testing integrated with Metasploit and other repositories; multiple exploit/checker projects also reference testing for this CVE. The descr...
CVE-2024-49112 Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability
...
CVE-2024-21356
Windows Lightweight Directory Access Protocol LDAP Denial of Service Vulnerability...
Design/Logic Flaw
Windows Lightweight Directory Access Protocol LDAP Denial of Service Vulnerability...
KB5022291: Windows Server 2022 Security Update (January 2023)
The remote Windows host is missing security update 5022291. It is, therefore, affected by multiple vulnerabilities - Microsoft ODBC Driver Remote Code Execution Vulnerability CVE-2023-21732 - Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability CVE-2023-21681 - Window...
CVE-2022-30200
Windows Lightweight Directory Access Protocol LDAP Remote Code Execution Vulnerability...
CVE-2022-30161
Windows Lightweight Directory Access Protocol LDAP Remote Code Execution Vulnerability...
CVE-2022-30143
Windows Lightweight Directory Access Protocol LDAP Remote Code Execution Vulnerability...
The vulnerability of the LDAP service protocol implementation in Microsoft Windows operating systems allows a hacker to execute arbitrary code.
The vulnerability of the LDAP service protocol implementation in Microsoft Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code through a specially crafted request...
CVE-2022-29139
Windows Lightweight Directory Access Protocol LDAP Remote Code Execution Vulnerability...
CVE-2022-29141
Windows Lightweight Directory Access Protocol LDAP Remote Code Execution Vulnerability...
CVE-2022-29137
Windows Lightweight Directory Access Protocol LDAP Remote Code Execution Vulnerability...