The LDAP client on Microsoft Windows 2000 before Update Rollup 1 for SP4 accepts certificates using LDAP Secure Sockets Layer (LDAPS) even when the Certificate Authority (CA) is not trusted, which could allow attackers to trick users into believing that they are accessing a trusted site.
Metrics
Affected Vendors & Products
References
History
Thu, 05 Dec 2024 21:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
cvssV3_1
|
Tue, 15 Oct 2024 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2005-10-06T04:00:00Z
Updated: 2024-12-05T20:28:56.956Z
Reserved: 2005-10-06T00:00:00Z
Link: CVE-2005-3170
Vulnrichment
Updated: 2024-08-07T23:01:58.781Z
NVD
Status : Modified
Published: 2005-10-06T10:02:00.000
Modified: 2024-12-05T21:15:05.520
Link: CVE-2005-3170
Redhat
No data.