CVE-2000-0834

Name of the Vulnerable Software and Affected Versions Windows 2000

Description The issue concerns the Windows 2000 telnet client, which attempts to perform NTLM authentication by default. This allows remote attackers to capture and replay the NTLM challenge/response via a telnet:// URL that points to a malicious server.

Recommendations For Windows 2000, consider disabling NTLM authentication for the telnet client as a temporary workaround until a patch is available. Restrict access to telnet services to minimize the risk of exploitation. Avoid using the telnet client to connect to untrusted servers until the issue is resolved.