Описание
The screensaver on Windows NT 4.0, 2000, XP, and 2002 does not verify if a domain account has already been locked when a valid password is provided, which makes it easier for users with physical access to conduct brute force password guessing.
The screensaver on Windows NT 4.0, 2000, XP, and 2002 does not verify if a domain account has already been locked when a valid password is provided, which makes it easier for users with physical access to conduct brute force password guessing.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2002-2028
- http://cert.uni-stuttgart.de/archive/bugtraq/2002/01/msg00278.html
- http://support.microsoft.com/default.aspx?scid=kb%3BEN-US%3Bq188700
- http://support.microsoft.com/default.aspx?scid=kb;EN-US;q188700
- http://www.heysoft.de/nt/lbh.htm
- http://www.securityfocus.com/bid/3933
EPSS
Процентиль: 73%
0.00788
Низкий
CVE ID
Связанные уязвимости
nvd
около 23 лет назад
The screensaver on Windows NT 4.0, 2000, XP, and 2002 does not verify if a domain account has already been locked when a valid password is provided, which makes it easier for users with physical access to conduct brute force password guessing.
EPSS
Процентиль: 73%
0.00788
Низкий