Microsoft Windows 2000 Install Unprotected ADMIN$ Share Vulnerability

During the install procedure for Windows 2000, the ADMIN$ share is created. However, the Administrator password, although entered, is not activated until after the next reboot. Therefore, during this period of time it is possible for anyone with network access to the machine to connect to the share as Administrator with no password.


 

Privacy Statement
Copyright 2010, SecurityFocus