exploitDog

CVE-2005-3173

Опубликовано: 06 окт. 2005

Источник: nvd

CVSS2: 4.6

EPSS Низкий

Описание

Microsoft Windows 2000 before Update Rollup 1 for SP4 does not apply group policies if the user logs on using UPN credentials with a trailing dot, which prevents Windows 2000 from finding the correct domain controller and could allow the user to bypass intended restrictions.

Ссылки

http://support.microsoft.com/kb/821102
Patch
Vendor Advisory
http://support.microsoft.com/kb/900345
Patch
Vendor Advisory
http://support.microsoft.com/kb/821102
Patch
Vendor Advisory
http://support.microsoft.com/kb/900345
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:microsoft:windows_2000:*:sp4:*:fr:*:*:*:*

EPSS

Процентиль: 41%

0.00187

Низкий

4.6 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-6gcj-36mj-56q7

github

почти 4 года назад

Microsoft Windows 2000 before Update Rollup 1 for SP4 does not apply group policies if the user logs on using UPN credentials with a trailing dot, which prevents Windows 2000 from finding the correct domain controller and could allow the user to bypass intended restrictions.

EPSS

Процентиль: 41%

0.00187

Низкий

4.6 Medium

CVSS2

Дефекты

NVD-CWE-Other