CSOonline

Critical Windows LDAP flaw could lead to crashed servers, RCE attacks

LDAPNightmare: If December Patch Tuesday server updates have not yet been installed, it’s time to do so to avoid DoS or RCE attacks on Active Directory domain controllers as shown by PoC exploit.
Redmond Magazine

Microsoft Urges LDAP Workaround Fix for Windows Systems

Microsoft updated an August security advisory this week to urge organizations using the Lightweight Directory Access Protocol (LDAP) in supported Windows systems to implement some configuration ...
Computer Weekly

Dangerous CLFS and LDAP flaws stand out on Patch Tuesday

Microsoft has issued fixes for 71 Common Vulnerabilities and Exposures (CVEs) to mark the final Patch Tuesday of 2025, with a solitary zero-day that enables privilege elevation through the Windows ...
Bleeping Computer

Microsoft May 2022 Patch Tuesday fixes 3 zero-days, 75 flaws

Today is Microsoft's May 2022 Patch Tuesday, and with it comes fixes for three zero-day vulnerabilities, with one actively exploited, and a total of 75 flaws. Of the 75 vulnerabilities fixed in ...
Dark Reading

Unpatched Active Directory Flaw Can Crash Any Microsoft Server

One of two critical Active Directory Domain Controller vulnerabilities patched by Microsoft last month goes beyond the original denial-of-service (DoS) attack chain and can be used to crash multiple, ...
Ars Technica

How to restrict a Windows AD account for LDAP auth only?

I'm attempting to set up LDAP auth for our Linux servers (yes, I could use kerberos, but LDAP appears to be sufficient for the moment) against our Active Directory server. I'm able to authenticate the ...
Houston Chronicle

What Is LDAP Authentication?

Business computer networks employ the Lightweight Directory Access Protocol, or LDAP, to distribute lists of information organized into hierarchies. To access a network's LDAP services, your computer ...