PT-2005-3995 · Microsoft · Windows 2000

Published

2005-10-06

Updated

2008-09-05

CVE-2005-3173

CVSS v2.0

4.6

Medium

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Microsoft Windows 2000 versions prior to Update Rollup 1 for SP4

Description The issue concerns a problem where group policies are not applied when a user logs on using UPN credentials with a trailing dot. This prevents the system from finding the correct domain controller, potentially allowing users to bypass intended restrictions.

Recommendations For Microsoft Windows 2000 versions prior to Update Rollup 1 for SP4, apply Update Rollup 1 for SP4 to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-3173

Affected Products

Windows 2000

PT-2005-3995 · Microsoft · Windows 2000

CVE-2005-3173

Related Identifiers

Affected Products

References · 3