Group Policy Bypass Vulnerability in Microsoft Windows 2000

Group Policy Bypass Vulnerability in Microsoft Windows 2000

CVE-2005-3173 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

Microsoft Windows 2000 before Update Rollup 1 for SP4 does not apply group policies if the user logs on using UPN credentials with a trailing dot, which prevents Windows 2000 from finding the correct domain controller and could allow the user to bypass intended restrictions.

Learn more about our User Device Pen Test.