| Vulnerability Name: | CVE-2005-3170 (CCN-24474) | ||||||||
| Assigned: | 2005-06-28 | ||||||||
| Published: | 2005-06-28 | ||||||||
| Updated: | 2008-09-05 | ||||||||
| Summary: | The LDAP client on Microsoft Windows 2000 before Update Rollup 1 for SP4 accepts certificates using LDAP Secure Sockets Layer (LDAPS) even when the Certificate Authority (CA) is not trusted, which could allow attackers to trick users into believing that they are accessing a trusted site. | ||||||||
| CVSS v3 Severity: | 5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
| ||||||||
| CVSS v2 Severity: | 5.1 Medium (CVSS v2 Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P) 3.8 Low (Temporal CVSS v2 Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P/E:U/RL:OF/RC:C)
| ||||||||
| Vulnerability Type: | CWE-Other | ||||||||
| Vulnerability Consequences: | Bypass Security | ||||||||
| References: | Source: MITRE Type: CNA CVE-2005-3170 Source: CCN Type: Microsoft Knowledge Base Article 883639 An LDAP connection to a CA or an LDAP bind to a CA is completed successfully when the CA is not in the Windows 2000 LDAP client trusted root store Source: MSKB Type: Patch, Vendor Advisory 883639 Source: CCN Type: Microsoft Knowledge Base Article 900345 Fixes that are included in the Update Rollup 1 for Microsoft Windows 2000 Service Pack 4 that is dated June 28, 2005 Source: MSKB Type: Patch, Vendor Advisory 900345 Source: CCN Type: Microsoft Security Advisory (891861) Release of Update Rollup 1 for Windows 2000 Service Pack 4 (SP4) Source: CCN Type: OSVDB ID: 19993 Microsoft Windows 2000 LDAPS CA Trust Issue Source: CCN Type: IBM Internet Security Systems X-Force Database Microsoft Windows 2000 Update Rollup 1 for Service Pack 4 has not been installed Source: XF Type: UNKNOWN win2k-ldaps-ca-untrusted(24474) | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| BACK | |||||||||