PT-2002-1720 · Microsoft · Metadirectory Services

Publicado

2002-08-12

Atualizado

2018-10-12

CVE-2002-0697

CVSS v2.0

Alta

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Microsoft Metadirectory Services (MMS) version 2.2

Description The issue allows remote attackers to bypass authentication and modify sensitive data. This is achieved by using an LDAP client to directly connect to MMS, thereby bypassing the checks for MMS credentials.

Recommendations For Microsoft Metadirectory Services (MMS) version 2.2, consider restricting direct LDAP connections to MMS as a temporary workaround until a patch is available.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2002-0697

Produtos afetados

Metadirectory Services

PT-2002-1720 · Microsoft · Metadirectory Services

CVE-2002-0697

Identificadores relacionados

Produtos afetados

Referências · 4