The LDAP client on Microsoft Windows 2000 before Update Rollup 1 for SP4 accepts certificates using LDAP Secure Sockets Layer (LDAPS) even when the Certificate Authority (CA) is not trusted, which could allow attackers to trick users into believing that they are accessing a trusted site.
History

Thu, 05 Dec 2024 21:15:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 5, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L'}


Tue, 15 Oct 2024 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2005-10-06T04:00:00Z

Updated: 2024-12-05T20:28:56.956Z

Reserved: 2005-10-06T00:00:00Z

Link: CVE-2005-3170

cve-icon Vulnrichment

Updated: 2024-08-07T23:01:58.781Z

cve-icon NVD

Status : Modified

Published: 2005-10-06T10:02:00.000

Modified: 2024-12-05T21:15:05.520

Link: CVE-2005-3170

cve-icon Redhat

No data.