PT-2005-3996 · Microsoft · Windows 2000

Published

2005-10-06

Updated

2008-09-05

CVE-2005-3174

CVSS v2.0

4.6

Medium

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Microsoft Windows 2000 before Update Rollup 1 for SP4

Description The issue allows users to log on to the domain even when their password has expired, under specific conditions related to the length of the fully qualified domain name (FQDN). This occurs when the FQDN is exactly 8 characters long.

Recommendations For Microsoft Windows 2000 before Update Rollup 1 for SP4, apply Update Rollup 1 for SP4 to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-3174

Affected Products

Windows 2000

PT-2005-3996 · Microsoft · Windows 2000

CVE-2005-3174

Related Identifiers

Affected Products

References · 3