Windows 2000 Active Directory Object Attribute Vulnerability

Under special circumstances, local users in Windows 2000 are able to modify attributes of an object in the Active Directory even though they do not possess the rights to do so.

If the local user has write permission to one attribute of an Active Directory object, they will be able to write to other attributes. This activity will be logged.

This vulnerability only affects servers that are domain controllers.


Privacy Statement
Copyright 2010, SecurityFocus