PT-2000-1361 · Microsoft · Windows 2000

Published

2000-05-11

Updated

2008-09-10

CVE-2000-0420

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Windows 2000

Description The default configuration of SYSKEY in Windows 2000 stores the startup key in the registry. This could allow an attacker to recover it and use it to decrypt Encrypted File System (EFS) data.

Recommendations For Windows 2000, consider changing the default configuration of SYSKEY to store the startup key in a secure location, such as a floppy disk, to prevent an attacker from recovering it.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2000-0420

Affected Products

Windows 2000

PT-2000-1361 · Microsoft · Windows 2000

CVE-2000-0420

Related Identifiers

Affected Products

References · 3