The screensaver on Windows NT 4.0, 2000, XP, and 2002 does not verify if a domain account has already been locked when a valid password is provided, which makes it easier for users with physical access to conduct brute force password guessing.
References
Configurations
Configuration 1 (hide)
|
History
07 Nov 2023, 01:56
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2002-12-31 05:00
Updated : 2023-12-10 10:17
NVD link : CVE-2002-2028
Mitre link : CVE-2002-2028
CVE.ORG link : CVE-2002-2028
JSON object : View
Products Affected
microsoft
- windows_2000
- windows_nt
- windows_xp
CWE