Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0048

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2001-0048
Last Modified 05 Sep 2008 04:23:08
Published 12 Feb 2001 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-0048

Summary

The "Configure Your Server" tool in Microsoft 2000 domain controllers installs a blank password for the Directory Service Restore Mode, which allows attackers with physical access to the controller to install malicious programs, aka the "Directory Service Restore Mode Password" vulnerability.

Vulnerable Systems

Operating System

  • Microsoft Windows 2000


References

BID - 2133

MS - MS00-099


Last Updated: 27 May 2016 10:36:06