exploitDog

CVE-2001-0048

Опубликовано: 12 фев. 2001

Источник: nvd

CVSS2: 7.2

EPSS Низкий

Описание

The "Configure Your Server" tool in Microsoft 2000 domain controllers installs a blank password for the Directory Service Restore Mode, which allows attackers with physical access to the controller to install malicious programs, aka the "Directory Service Restore Mode Password" vulnerability.

Ссылки

http://www.securityfocus.com/bid/2133
Exploit
Patch
Vendor Advisory
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-099
http://www.securityfocus.com/bid/2133
Exploit
Patch
Vendor Advisory
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-099

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*

EPSS

Процентиль: 58%

0.00368

Низкий

7.2 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-xvj4-j4pc-f2wp

github

больше 3 лет назад

The "Configure Your Server" tool in Microsoft 2000 domain controllers installs a blank password for the Directory Service Restore Mode, which allows attackers with physical access to the controller to install malicious programs, aka the "Directory Service Restore Mode Password" vulnerability.

EPSS

Процентиль: 58%

0.00368

Низкий

7.2 High

CVSS2

Дефекты

NVD-CWE-Other