CVE-2000-0311 : The Windows 2000 domain controller allows a malicious user to modify Active Directory information by modifying an unprot

The Windows 2000 domain controller allows a malicious user to modify Active Directory information by modifying an unprotected attribute, aka the "Mixed Object Access" vulnerability.

Published 2000-04-20 04:00:00

Updated 2018-10-12 21:29:33

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2000-0311

Probability of exploitation activity in the next 30 days: 0.05%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 14 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2000-0311

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
2.1	LOW	AV:L/AC:L/Au:N/C:N/I:P/A:N	3.9	2.9	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: None

References for CVE-2000-0311

http://www.securityfocus.com/bid/1145
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-026

Products affected by CVE-2000-0311

Microsoft » Windows 2000
cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2000-0311

Exploit prediction scoring system (EPSS) score for CVE-2000-0311

CVSS scores for CVE-2000-0311

References for CVE-2000-0311

Products affected by CVE-2000-0311