This update resolves the "Domain Account Lockout" security vulnerability in Windows 2000 and is discussed in Microsoft Security Bulletin MS00-089. Download now to ensure that the Account Lockout Policy helps prevent unauthorized access to the computers in your network.
Under very specific conditions, a malicious user can try repeatedly to guess an account password, even if the domain administrator has set the Account Lockout Policy to disable the account after a specified number of attempts to access it.
A number of factors limit the scope of this vulnerability:
For more information about this vulnerability, read Microsoft Security Bulletin MS00-089. This update applies to Windows 2000 Professional, Service Pack 1, Windows 2000 without Service Pack 1 is not affected by this vulnerability.