CVE-2009-1139

CVE Database · CVE-2009-1139

CVE-2009-1139

· N/AModified

CVSS v3.1

N/A

EPSS

39.13%

Published

Jun 10, 2009

Modified

Apr 22, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Memory leak in the LDAP service in Active Directory on Microsoft Windows 2000 SP4 and Server 2003 SP2, and Active Directory Application Mode (ADAM) on Windows XP SP2 and SP3 and Server 2003 SP2, allows remote attackers to cause a denial of service (memory consumption and service outage) via (1) LDAP or (2) LDAPS requests with unspecified OID filters, aka "Active Directory Memory Leak Vulnerability."

Weaknesses (CWE)

CWE-399

Affected Products (11)

microsoft · adamvulnerable

microsoft · windows_server_2003vulnerable

microsoft · windows_xp

microsoft · windows_2000vulnerable

microsoft · windows_server_2003vulnerable

References (18)

http://osvdb.org/54938

http://secunia.com/advisories/35355

http://support.avaya.com/elmodocs2/security/ASA-2009-214.htm