← back
CVE-2001-0502

CVE-2001-0502

EPSS 2.0%
Running Windows 2000 LDAP Server over SSL, a function does not properly check the permissions of a user request when the directory principal is a domain user and the data attribute is the domain password, which allows local users to modify the login password of other users.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-036https://exchange.xforce.ibmcloud.com/vulnerabilities/6745http://www.ciac.org/ciac/bulletins/l-101.shtmlhttp://www.securityfocus.com/bid/2929