Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-1217

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2000-1217
Last Modified 05 Sep 2008 04:22:56
Published 21 Nov 2000 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2000-1217

Summary

Microsoft Windows 2000 before Service Pack 2 (SP2), when running in a non-Windows 2000 domain and using NTLM authentication, and when credentials of an account are locally cached, allows local users to bypass account lockout policies and make an unlimited number of login attempts, aka the "Domain Account Lockout" vulnerability.

Vulnerable Systems

Operating System

  • Microsoft Windows 2000


References

CERT-VN - VU#818496

XF - win2k-brute-force(5585)

BID - 1973

MS - MS00-089


Last Updated: 27 May 2016 10:36:04