Windows 2000 Terminal Services Client IP Address Logging Vulnerability

Windows 2000 Terminal Services Client IP Address Logging Vulnerability

CVE-2005-3176 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Microsoft Windows 2000 before Update Rollup 1 for SP4 does not record the IP address of a Windows Terminal Services client in a security log event if the client connects successfully, which could make it easier for attackers to escape detection.

Learn more about our Web Application Penetration Testing UK.