Microsoft · Windows 2000 Sp4 · CVE-2006-2380
**Name of the Vulnerable Software and Affected Versions**
Microsoft Windows 2000 SP4
**Description**
The issue is related to the way RPC handles mutual authentication over SSL, allowing remote attackers to spoof an RPC server. This could enable an attacker to persuade a user to connect to a malicious RPC server that appears to be valid.
**Recommendations**
For Microsoft Windows 2000 SP4, at the moment, there is no information about a newer version that contains a fix for this vulnerability.