Icon of program: Microsoft Security Bullet…

Microsoft Security Bulletin MS02-036 for Windows

By MicrosoftFreeUser Rating

Key Details of Microsoft Security Bulletin MS02-036

  • Authentication Flaw in Microsoft Metadirectory Services
  • Last updated on April 27, 2017
  • Virus scan status:

    Clean (it's extremely likely that this software program is clean)


Developer's Description

Authentication Flaw in Microsoft Metadirectory Services
Microsoft Metadirectory Services (MMS) is a centralized metadirectory service that provides connectivity, management, and interoperability functions to help unify fragmented directory and database environments. It enables enterprises to link together disparate data repositories such as Exchange directory, Active Directory, third-party directory services, and proprietary databases, for the purpose of ensuring that the data in each is consistent, accurate, and can be centrally managed

A flaw exists that could enable an unprivileged user to access and manipulate data within MMS that should, by design, only be accessible to MMS administrators. Specifically, it is possible for an unprivileged user to connect to the MMS data repository via an LDAP client in such a way as to bypass certain security checks. This could enable an attacker to modify data within the MMS data repository, either for the purpose of changing the MMS configuration or replicating bogus data to the other data repositories.


Explore More


Full Specifications

GENERAL
Release
July 25, 2002
Latest update
April 27, 2017
Version
Q317138
OPERATING SYSTEMS
Platform
Windows
Operating System
Windows XP, Windows 2000, Windows 10, Windows 98
Additional Requirements
Microsoft Metadirectory Services 2.2
POPULARITY
Total Downloads
25
Downloads Last Week
0

Related Software