HighMicrosoft Knowledge Base Article 971055 is not installed, which could allow a remote attacker to exploit the following vulnerabilities:
Microsoft Windows 2000 could allow a remote attacker to execute arbitrary code on the system, caused by improper freeing of memory by the Active Directory Lightweight Directory Access Protocol (LDAP) service. By sending a specially-crafted crafted LDAP or LDAPS request to a Microsoft Windows 2000 Domain Controller, an attacker could exploit this vulnerability to execute arbitrary code with the privileges of the victim.
Microsoft Windows is vulnerable to a denial of service, caused by a memory leak error in the Active Directory and Active Directory Application Mode (ADAM) Lightweight Directory Access Protocol (LDAP) service. By sending a specially-crafted LDAP or LDAPS request containing specific OID filters to the ADAM or an Active Directory server, a remote attacker could exploit this vulnerability to cause the system to stop responding. The system must be rebooted to regain normal functionality.
Note: Authentication is required to exploit this vulnerability on Windows Server 2003 or systems with ADAM installed.
Apply the appropriate patch for your system, as listed in Microsoft Security Bulletin MS09-018. See References.
Microsoft Security Bulletin MS09-018
Vulnerabilities in Active Directory Could Allow Remote Code Execution (971055)
http://www.microsoft.com/technet/security/bulletin/ms09-018.mspx
IBM Internet Security Systems X-Force Database
Microsoft Windows Active Directory LDAP code execution
http://xforce.iss.net/xforce/xfdb/50759
IBM Internet Security Systems X-Force Database
Microsoft Windows Active Directory LDAP denial of service
http://xforce.iss.net/xforce/xfdb/50761
ISS X-Force
Microsoft Windows Knowledge Base Article 971055 update is not installed
http://www.iss.net/security_center/static/50767.php
CVE CVE-2009-1138
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1138
CVE CVE-2009-1139
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1139
