NuytsTech Security

CVE-2002-2028

by ·

The screensaver on Windows NT 4.0, 2000, XP, and 2002 does not verify if a domain account has already been locked when a valid password is provided, which makes it easier for users with physical access to conduct brute force password guessing.

Date published : 2005-07-14

http://www.securityfocus.com/bid/3933

http://cert.uni-stuttgart.de/archive/bugtraq/2002/01/msg00278.html

Tags: