x
48h OFFER
If you're already a customer of
our homeusers protection,
renew now with a 50% off
RENEW NOW
x
SPECIAL OFFER
If you're already a customer of
our homeusers protection,
renew now with a 50% off
RENEW NOW
x
HALLOWEEN OFFER
take advantage of our
terrific discounts
BUY NOW AND GET A 50% OFF
x
CHRISTMAS OFFER
Buy the best antivirus
at the best price
BUY NOW AND GET A 40% OFF
x
SPECIAL OFFER
Buy the best antivirus
at the best price
BUY NOW AND GET A 50% OFF
x
BLACKFRIDAY OFFER
Buy the best antivirus
at the best price
TODAY ONLY UP TO 70% OFF
x
CYBERMONDAY OFFER
Buy the best antivirus
at the best price
(Only for homeusers)
TODAY ONLY UP TO 70% OFF
Active Scan. Scan your PC free
Panda Protection

Virus Encyclopedia

Welcome to the Virus Encyclopedia of Panda Security.

MS07-039

Threat LevelLow threatDamageHighDistributionNot widespread
Common name:MS07-039
Technical name:MS07-039
Threat level:Medium
Alias:Vulnerability in Windows Active Directory, Vulnerabilidad en Windows Active Directory
Type:Vulnerability
Effects:  

It is a critical vulnerability in the Windows Active Directory on Windows 2003/2000, which allows hackers to gain remote control of the affected computer or to launch denial of service attacks.

Affected platforms:

Windows 2003/2000

First detected on:July 11, 2007
Detection updated on:July 11, 2007
StatisticsNo

Brief Description 

    

MS07-039 is not categorized as virus, worm, Trojan or backdoor. It is a critical vulnerability in the Windows Active Directory on Windows 2003/2000, which allows arbitrary code to be remotely executed and denial of service attacks to be launched.

The addressed vulnerabilities are:

  • Windows Active Directory vulnerability: a remote code execution that allows hackers to gain remote control of the affected computer with the same privileges as the logged on user.
    This vulnerability is usually exploited by sending a specially crafted network packet to the vulnerable system. However, in order to exploit it on Windows Server 2003, the attacker must be authenticated.
  • Windows Active Directory vulnerability: a denial of service vulnerability, which could cause the affected system to stop responding.
    This vulnerability is usually exploited by sending a specially crafted request to a vulnerable system.

Additionally, though attacks can be launched across the Internet, a firewall could be used in order to prevent those attacks.

 

If you have Windows 2003/2000, it is recommended to download and apply the security patch for this vulnerability. Click here to access the web page for downloading the patch.