Intrusion Prevention

MS.Kerberos.TGT.Renew.DoS

Description

This indicates an attack attempt against a vulnerability in the Kerberos authentication system on MS Windows, which could cause the Windows domain controller to reboot.
A remote attacker may exploit this by sending a malformed Kerberos TGS request to the target KDC.

Affected Products

Windows 2000
Windows Server 2003
Windows Server 2008

Impact

Denial of Service

Recommended Actions

Refer to the following web site for the suggested workaround:
http://www.microsoft.com/technet/security/Bulletin/ms10-014.mspx

CVE References

CVE-2010-0035