Spyware Doctor
Spyware Doctor with AntiVirus
PC Tools AntiVirus
PC Tools Internet Security
PC Tools Firewall Plus
ThreatFire
Spam Monitor
iAntiVirus for Mac OS X
Registry Mechanic
Desktop Maestro
File Recover
Privacy Guardian
PC Tools Disk Suite
Spyware Doctor Enterprise
Help me choose
Local Security Policy Corruption Vulnerability
A security vulnerability exists in Microsoft® Windows® 2000 which could allow a malicious user to disrupt normal operation of an affected machine, and potentially of an entire network.
Issue
This vulnerability could allow a malicious user to corrupt parts of a Windows 2000 system's local security policy, with the effect of disrupting domain membership and trust relationship information. If a workstation or member server were attacked via this vulnerability, it would effectively remove the machine from the domain; if a domain controller were attacked, it could no longer process domain logon requests. Recovering from such an attack would likely require that a known-working configuration be restored from backup.
It would not be necessary to be an authenticated domain member in order to mount an attack via this vulnerability. Any user who could establish a RPC connection with an affected machine and send the proper command sequence to it could exploit the vulnerability. If the malicious user were an intranet user, he could likely attack any machine within the network; if the malicious user were on the Internet, he could likely attack only machines on the network edge that allow RPC connections.
Affected Products
- Windows 2000
Download
Patch: http://www.microsoft.com/Downloads/Release.asp?ReleaseID=24019
Further Details
Source: Microsoft Corporation
Reference: Microsoft Corporation
Updated: August 28, 2000
>> Recommended Download - secure your PC from spyware, adware and malware now with Spyware Doctor <<
