Vulnerability Details : CVE-2005-3171
Microsoft Windows 2000 before Update Rollup 1 for SP4 records Event ID 1704 to indicate that Group Policy security settings were successfully updated, even when the processing fails such as when Ntuser.pol cannot be accessed, which could cause system administrators to believe that the system is compliant with the specified settings.
Exploit prediction scoring system (EPSS) score for CVE-2005-3171
Probability of exploitation activity in the next 30 days: 0.07%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 28 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2005-3171
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
4.6
|
MEDIUM | AV:L/AC:L/Au:N/C:P/I:P/A:P |
3.9
|
6.4
|
NIST |
References for CVE-2005-3171
-
http://support.microsoft.com/kb/884559
Patch;Vendor Advisory
-
http://support.microsoft.com/kb/900345
Error - Office.com - Microsoft SupportPatch;Vendor Advisory
Products affected by CVE-2005-3171
- cpe:2.3:o:microsoft:windows_2000:*:sp4:*:fr:*:*:*:*