Vulnerability Description
Microsoft Windows 2000 before Update Rollup 1 for SP4 records Event ID 1704 to indicate that Group Policy security settings were successfully updated, even when the processing fails such as when Ntuser.pol cannot be accessed, which could cause system administrators to believe that the system is compliant with the specified settings.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Windows 2000 | All versions |
References
- http://support.microsoft.com/kb/884559PatchVendor Advisory
- http://support.microsoft.com/kb/900345PatchVendor Advisory
- http://support.microsoft.com/kb/884559PatchVendor Advisory
- http://support.microsoft.com/kb/900345PatchVendor Advisory
FAQ
What is CVE-2005-3171?
CVE-2005-3171 is a vulnerability with a CVSS score of 4.6 (MEDIUM). Microsoft Windows 2000 before Update Rollup 1 for SP4 records Event ID 1704 to indicate that Group Policy security settings were successfully updated, even when the processing fails such as when Ntuse...
How severe is CVE-2005-3171?
CVE-2005-3171 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-3171?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Windows 2000.