Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3168

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-3168
Last Modified 05 Sep 2008 04:53:38
Published 06 Oct 2005 06:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-3168

Summary

The SECEDIT command on Microsoft Windows 2000 before Update Rollup 1 for SP4, when using a security template to set Access Control Lists (ACLs) on folders, does not apply ACLs on folders that are listed after a long folder entry, which could result in less secure permissions than specified by the template.

Vulnerable Systems

Operating System

  • Microsoft Windows 2000


References

MSKB - 900345

MSKB - 834424


Last Updated: 27 May 2016 10:40:50