← back
CVE-2002-2028

CVE-2002-2028

EPSS 2.0%
The screensaver on Windows NT 4.0, 2000, XP, and 2002 does not verify if a domain account has already been locked when a valid password is provided, which makes it easier for users with physical access to conduct brute force password guessing.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://cert.uni-stuttgart.de/archive/bugtraq/2002/01/msg00278.htmlhttp://support.microsoft.com/default.aspx?scid=kb%3BEN-US%3Bq188700http://www.heysoft.de/nt/lbh.htmhttp://www.securityfocus.com/bid/3933