Microsoft Windows 2000 Patch: Web Client NTLM Auth
Microsoft Windows 2000 Patch: Web Client NTLM Auth Ranking & Summary
Microsoft Windows 2000 Patch: Web Client NTLM Auth description
Under specific conditions, this vulnerability allows a malicious Web site operator to obtain the cryptographically protected logon credentials of a visiting user. This is because the security settings for WEC components are set to incorrect levels, which allows your computer to send information about your authentication credentials to remote Web applications.
The vulnerability exists because WEC, which allows Internet Explorer to view and publish files via Web Folders, does not adhere to the recommended security settings in Internet Explorer, and performs NTLM authentication for any server that requests it. A malicious Web site operator could format a document to request NTLM authentication from a visiting user automatically, causing the users authentication credentials to be sent by default. Once the credentials are revealed, the operator may be able to use specialized tools to derive the users password.
Note This vulnerability affects only computers running versions of Internet Explorer later than 5.0 with Web Folders enabled. For more information about this vulnerability, read Microsoft Security Bulletin MS01-001.
Microsoft Windows 2000 Patch: Web Client NTLM Auth Screenshot
Microsoft Windows 2000 Patch: Web Client NTLM Auth Keywords
Bookmark Microsoft Windows 2000 Patch: Web Client NTLM Auth
Microsoft Windows 2000 Patch: Web Client NTLM Auth Copyright
Want to place your software product here?
Please contact us for consideration.
Contact WareSeeker.com
- Automatically Close Popup Windows By Name Software 7.0
- Windows ME Security Patches NA
- Microsoft Windows 95 Patch: 2 to 4 Digit Date Conv Update
- Microsoft Internet Explorer 5.5 SP1 Security Patch
- Update for Windows XP Service Pack 2 (KB896626)
- Microsoft Internet Explorer 5.5 SP1 Browser Securi
- Microsoft Windows NT 4.0 Patch: Malformed TCP/IP P Update
- Microsoft Windows NT 4.0 Patch: Predictable TCP In Update
- Windowblinds 5 5.51
- Microsoft Windows Defender (MS AntiSpyware) 1.1.1592
- Microsoft Clip Art Buffer Overrun Vulnerability Patch 1
- Windows Help DesignerHTML Edition 3.0
- Webmole 2000 1.0
- Microsoft Windows Media Services 4.0 & 4.1 Security Patch: Severed Windows Media Server Connection Vulnerability 12-15-00
- Microsoft Windows ME Security Patch: Web Client NTLM Authentication Vulnerability MS01-001
- Binary 1.02