CVE Catalog

CVE-2000-0311

Low
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Elevated risk
1.37%

68th percentile — higher than 68% of all known CVEs

Summary

The Windows 2000 domain controller allows a malicious user to modify Active Directory information by modifying an unprotected attribute, known as the 'Mixed Object Access' vulnerability.

Risk Assessment

This vulnerability may lead to unauthorized changes in Active Directory, potentially affecting the integrity and security of the entire IT infrastructure.

Recommendation

It is recommended to secure Active Directory attributes and monitor access to the domain controller to detect unauthorized changes.

Original NVD description (English source)

The Windows 2000 domain controller allows a malicious user to modify Active Directory information by modifying an unprotected attribute, aka the "Mixed Object Access" vulnerability.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS