CVE-2000-1217
4.6
CVSS SCORE
Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P
Description
Microsoft Windows 2000 before Service Pack 2 (SP2), when running in a non-Windows 2000 domain and using NTLM authentication, and when credentials of an account are locally cached, allows local users to bypass account lockout policies and make an unlimited number of login attempts, aka the "Domain Account Lockout" vulnerability.
CVSS Vector Details
Attack Vector
Local
Attack Complexity
Low
Confidentiality
P
Integrity
P
Availability
P
Affected Software Configurations
- o microsoft windows_2000 * sp1 * * * * * *
Weaknesses (CWE)
- NVD-CWE-Other
References & External Links
- http://www.kb.cert.org/vuls/id/818496
- http://www.securityfocus.com/bid/1973
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-089
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5585
- http://www.kb.cert.org/vuls/id/818496
- http://www.securityfocus.com/bid/1973
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-089
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5585