Version: 2008
  • On CHOW: Why does asparagus make your pee smell?
advertisement
Click Here

Windows 2000 Domain Account Lockout Vulnerability Patch MS00-089

  • Quick specs
  • Price: Free
  • Operating system: Windows 2000
  • Date added: November 28, 2000
  • Total Downloads: 9,710
  • Downloads last week: 2
  • See full specifications
Add to my list Add to my Watch List
Download Now (3.52MB)
Tested spyware free

Publisher's description

From Microsoft :

This patch eliminates a security vulnerability in Microsoft Windows 2000. The vulnerability could allow a malicious user to use repeated attempts to guess an account password even if the domain administrator had set an account lockout policy.

A flaw in the way that NTLM authentication operates in Windows 2000 could allow a domain account lockout policy to be bypassed on a local Windows 2000 machine, even if the domain administrator had set such a policy. The ability of a malicious user to avoid the domain account lockout policy could increase the threat from a brute force password-guessing attack.

This vulnerability only affects Windows 2000 machines that are members of non-Windows 2000 domains. In addition, the vulnerability only affects domain user accounts that have previously logged into the target machine and already have cached credentials established on that machine. If a domain account lockout policy is in place and an attacker attempts a brute force password-guessing attack, the domain user account will be locked out as expected at the domain controller. However, if the attacker is able find the correct password, the local Windows 2000 machine will log the attacker on using cached credentials in violation of the account lockout policy. Although the attacker would be able to log on to the local machine, he or she would not be able to authenticate to the domain or gain access to resources on other machines in the domain.

CNET Editor's Note: Windows 2000 Gold is not affected by this vulnerability. This patch will be included in Windows 2000 Service Pack 2. Domain Account Lockout vulnerability FAQ.

Real Player SP
Watch your favorite videos on your favorite devices.
Download Now

More popular Encryption Software downloads

  1. 52,623 downloads 1. RoboForm
  2. 27,875 downloads 2. Hotspot Shield
  3. 26,862 downloads 3. Computer Use Reporter
  4. 8,814 downloads 4. Easy File Encryption
  5. 8,095 downloads 5. Easy Private Disk
  6. See all Encryption Software downloads
Adobe Acrobat Professional
Compile different file types into one for easier sharing
Download Now

User reviews

Submit your review

Log in or create an account to submit your review for:

Windows 2000 Domain Account Lockout Vulnerability Patch MS00-089

 ORLog in with your Facebook account
1. Rate this product:
(Mouse over the stars to rate this product and click to set your rating.)
2. One-line summary:(Summarize your review in one line. 10 characters minimum; required.)
0 of 55 characters
3. Pros:(Tell us what you like about this product. 10 characters minimum; required.)
0 of 250 characters
4. Cons:(Tell us what you don't like about this product. 10 characters minimum; required.)
0 of 250 characters
Bottom-line summary:(Explain to us in detail why you like or dislike the product, focusing your comments on the product's features and functionality, and your experience using the product. This field is optional.)
0 of 5000 characters

The posting of advertisements, profanity, or personal attacks are prohibited.
Click here to review our site terms of use.

Submit
See more CNET content tagged:
Microsoft Windows 2000,
attacker,
domain,
malicious user,
policy

advertisement
download
Site map
Help center
Our software policies
Newsletters
Submit software
Popular topics
Apple iPhone
Apple iPod
Cell phones
Dell
GPS
LCD TV
CNET sites
CNET Site map
CNET TV
Downloads
News
Reviews
Shopper.com
More information
Newsletters
CNET Mobile
Customer Help Center
RSS
CNET Widgets
About CNET