Lucene search

MitreCVE-2005-3171

HistoryOct 06, 2005 - 10:02 a.m.

CVE-2005-3171

2005-10-0610:02:00

mitre

web.nvd.nist.gov

cve-2005-3171

microsoft windows

update rollup

group policy

security settings

ntuser.pol

compliance

event id 1704

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.9

Confidence

Low

EPSS

0.001

Percentile

17.8%

JSON

Microsoft Windows 2000 before Update Rollup 1 for SP4 records Event ID 1704 to indicate that Group Policy security settings were successfully updated, even when the processing fails such as when Ntuser.pol cannot be accessed, which could cause system administrators to believe that the system is compliant with the specified settings.

Affected configurations

Nvd

Node

microsoftwindows_2000sp4fr

VendorProductVersionCPE
microsoftwindows_2000*cpe:2.3:o:microsoft:windows_2000:*:sp4:*:fr:*:*:*:*

Vendor	Product	Version	CPE
microsoft	windows_2000	*	cpe:2.3:o:microsoft:windows_2000::sp4::fr::::

References

support.microsoft.com/kb/884559

support.microsoft.com/kb/900345

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.9

Confidence

Low

EPSS

0.001

Percentile

17.8%

JSON

Related for CVE-2005-3171