Microsoft Windows 2000 Unauthorized Password Change Vulnerability
|
Bugtraq ID:
|
3063
|
|
Class:
|
Origin Validation Error
|
|
CVE:
|
CVE-2001-1302
CVE-2001-1302
|
|
Remote:
|
No
|
|
Local:
|
Yes
|
|
Published:
|
Jul 18 2001 12:00AM
|
|
Updated:
|
Jul 11 2009 06:56AM
|
|
Credit:
|
Discovered by Alberto Aragones <quimeras@QUIMERAS.COM> and posted to the NTBugtraq Mailing List on July 18, 2001.
|
|
Vulnerable:
|
Microsoft Windows 2000 Terminal Services SP2
+
Microsoft Windows 2000 Advanced Server SP2
+
Microsoft Windows 2000 Datacenter Server SP2
+
Microsoft Windows 2000 Server SP2
Microsoft Windows 2000 Terminal Services SP1
+
Microsoft Windows 2000 Advanced Server SP1
+
Microsoft Windows 2000 Datacenter Server SP1
+
Microsoft Windows 2000 Server SP1
Microsoft Windows 2000 Terminal Services
+
Microsoft Windows 2000 Advanced Server
+
Microsoft Windows 2000 Datacenter Server
+
Microsoft Windows 2000 Server
Microsoft Windows 2000 Server SP2
Microsoft Windows 2000 Server SP1
Microsoft Windows 2000 Server
+
Avaya DefinityOne Media Servers
+
Avaya IP600 Media Servers
+
Avaya S3400 Message Application Server 0
+
Avaya S8100 Media Servers 0
Microsoft Windows 2000 Professional SP2
Microsoft Windows 2000 Professional SP1
Microsoft Windows 2000 Professional
Microsoft Windows 2000 Datacenter Server SP2
Microsoft Windows 2000 Datacenter Server SP1
Microsoft Windows 2000 Datacenter Server
Microsoft Windows 2000 Advanced Server SP2
Microsoft Windows 2000 Advanced Server SP1
Microsoft Windows 2000 Advanced Server
|
|
|
|
Not Vulnerable:
|
|
|
