CVSS: 4.6EPSS: 0%CPEs: 1EXPL: 0CVE-2005-3173
https://notcve.org/view.php?id=CVE-2005-3173
Microsoft Windows 2000 before Update Rollup 1 for SP4 does not apply group policies if the user logs on using UPN credentials with a trailing dot, which prevents Windows 2000 from finding the correct domain controller and could allow the user to bypass intended restrictions. • http://support.microsoft.com/kb/821102 http://support.microsoft.com/kb/900345 •
CVSS: 4.6EPSS: 0%CPEs: 3EXPL: 0CVE-2005-3177
https://notcve.org/view.php?id=CVE-2005-3177
CHKDSK in Microsoft Windows 2000 before Update Rollup 1 for SP4, Windows XP, and Windows Server 2003, when running in fix mode, does not properly handle security descriptors if the master file table contains a large number of files or if the descriptors do not satisfy certain NTFS conventions, which could cause ACLs for some files to be reverted to less secure defaults, or cause security descriptors to be removed. • http://support.microsoft.com/kb/831374 http://support.microsoft.com/kb/831375 http://support.microsoft.com/kb/900345 •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2005-3169
https://notcve.org/view.php?id=CVE-2005-3169
Microsoft Windows 2000 before Update Rollup 1 for SP4, when the "audit directory service access" policy is enabled, does not record a 565 event message for File Delete Child operations on an Active Directory object in the security event log, which could allow attackers to conduct unauthorized activities without detection. • http://support.microsoft.com/kb/833873 http://support.microsoft.com/kb/900345 •
CVSS: 5.1EPSS: 0%CPEs: 1EXPL: 0CVE-2005-3170
https://notcve.org/view.php?id=CVE-2005-3170
The LDAP client on Microsoft Windows 2000 before Update Rollup 1 for SP4 accepts certificates using LDAP Secure Sockets Layer (LDAPS) even when the Certificate Authority (CA) is not trusted, which could allow attackers to trick users into believing that they are accessing a trusted site. • http://support.microsoft.com/kb/883639 http://support.microsoft.com/kb/900345 • CWE-295: Improper Certificate Validation •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2005-3168
https://notcve.org/view.php?id=CVE-2005-3168
The SECEDIT command on Microsoft Windows 2000 before Update Rollup 1 for SP4, when using a security template to set Access Control Lists (ACLs) on folders, does not apply ACLs on folders that are listed after a long folder entry, which could result in less secure permissions than specified by the template. • http://support.microsoft.com/kb/834424 http://support.microsoft.com/kb/900345 •