Main > Utilities > Patches and Updates >

Microsoft Windows ME Security Patch: Web Client NTLM Authentication Vulnerability MS01-001

Microsoft Windows ME Security Patch: Web Client NTLM Authentication Vulnerability MS01-001

Sponsored Links

Microsoft Windows ME Security Patch: Web Client NTLM Authentication Vulnerability MS01-001 Ranking & Summary

RankingClick at the star to rank
Ranking Level
User Review: 10 (1 times)
Download now
File size: 312K
Platform: Windows 9X/ME/NT/2K/2003/XP/Vista
License: Freeware
Price:
Downloads: 3203
Date added: 2001-01-15
Publisher: Microsoft Corp.

Microsoft Windows ME Security Patch: Web Client NTLM Authentication Vulnerability MS01-001 description

The Web Extender Client (WEC) is a component that ships as part of Office 2000, Windows 2000, and Windows Me. WEC allows IE to view and publish files via web folders, similar to viewing and adding files in a directory through Windows Explorer. Due to an implementation flaw, WEC does not respect the IE Security settings regarding when NTLM authentication will be performed – instead, WEC will perform NTLM authentication with any server that requests it. If a user established a session with a malicious user’s web site – either by browsing to the site or by opening an HTML mail that initiated a session with it – an application on the site could capture the user’s NTLM credentials. The malicious user could then use an offline brute force attack to derive the password or, with specialized tools, could submit a variant of these credentials in an attempt to access protected resources. The vulnerability would only provide the malicious user with the cryptographically protected NTLM authentication credentials of another user. It would not, by itself, allow a malicious user to gain control of another user’s computer or to gain access to resources to which that user was authorized access. In order to leverage the NTLM credentials (or a subsequently cracked password), the malicious user would have to be able to remotely logon to the target system. However, best practices dictate that remote logon services be blocked at border devices, and if these practices were followed, they would prevent an attacker from using the credentials to logon to the target system. This download is for Windows ME (without Office 2000 installed).
Download now

Microsoft Windows ME Security Patch: Web Client NTLM Authentication Vulnerability MS01-001 Screenshot

Microsoft Windows ME Security Patch: Web Client NTLM Authentication Vulnerability MS01-001 View Microsoft Windows ME Security Patch: Web Client NTLM Authentication Vulnerability MS01-001 Full Screenshot
Advertisements
Download Microsoft Windows ME Security Patch: Web Client NTLM Authentication Vulnerability MS01-001

Microsoft Windows ME Security Patch: Web Client NTLM Authentication Vulnerability MS01-001 Keywords

NTLM WEC Microsoft Windows ME Security Patch Web Client NTLM Authentication Vulnerability MS01 MS01 IE Web Client NTLM Authentication Vulnerability Microsoft Windows ME NTLM Authentication windows me Web client Office 2000 microsoft windows Web Folders web windows

Bookmark Microsoft Windows ME Security Patch: Web Client NTLM Authentication Vulnerability MS01-001

Hyperlink code:
Link for forum:

Microsoft Windows ME Security Patch: Web Client NTLM Authentication Vulnerability MS01-001 Copyright

WareSeeker periodically updates pricing and software information of Microsoft Windows ME Security Patch: Web Client NTLM Authentication Vulnerability MS01-001 full version from the publisher, so some information may be slightly out-of-date. You should confirm all information before relying on it. Software piracy is theft, Using crack, password, serial numbers, registration codes, key generators is illegal and prevent future development of Microsoft Windows ME Security Patch: Web Client NTLM Authentication Vulnerability MS01-001 Edition. Download links are directly from our publisher sites, torrent files or links from rapidshare.com, yousendit.com or megaupload.com are not allowed

Allok Video Splitter 2.2.0 Review:

Name (Required)
Email(Required)
Captcha
Featured Software

Want to place your software product here?
Please contact us for consideration.

Contact WareSeeker.com
Embed software to your page
Related Information
microsoft windows messenger microsoft windows media windows messenger windows media player 11 windows media player microsoft windows me security patches microsoft windows media player windows live messenger windows media player 10 microsoft office 2000 windows media ntlm authentication failed windows message windows media 10 server allows ntlm authentication only windows media player update windows media 11 windows media player charles hamilton
More
Related Software

Microsoft Windows ME Security Patch: Web Client NTLM Authentication Vulnerability MS01-001

Microsoft Windows ME Security Patch: Malformed IPX NMPI Packet Vulnerability 10-11-00

The Microsoft IPX/SPX protocol implementation (NWLink) includes an NMPI (Name Management Protocol on IPX) listener that will reply to any requesting network address. The NMPI listener software does no Free Download

Microsoft Windows ME Security Patch: WebTV for Windows Denial of Service Vulnerability 10-11-00

There is a denial of service vulnerability in WebTV for Windows that may allow a malicious user to remotely crash either the WebTV for Windows application and/or the computer system running WebTV for Free Download

Microsoft Windows ME Security Patch: Share Level Password Vulnerability 10-10-00

Microsoft Windows ME provides a password protection feature referred to as (share level access) for the File and Print Sharing service. However, due to the way the password feature is currently implem Free Download

Microsoft Windows ME Security Patch: HyperTerminal Buffer Overflow Vulnerability 10-18-00

The HyperTerminal application is a utility that installs, by default, on all versions of Windows 98, 98SE, Windows ME, Windows NT, and Windows 2000. The product contains an unchecked buffer in a secti Free Download

Microsoft Windows 2000 Patch: Web Client NTLM Auth

This update resolves the "Web Client NTLM Authentication" security vulnerability in Windows 2000 and Office 2000 and is discussed in Microsoft Security Bulletin MS01-001 Free Download

Microsoft Windows Media Services 4.0 & 4.1 Security Patch: Severed Windows Media Server Connection Vulnerability 12-15-00

If a connection to a server running the Windows Media Unicast Service was started, then severed, in a particular way, the service would “leak” some of the resources that were allocated during the co Free Download

Microsoft Office 2000 SR-1 Update: Web Client Security MS01-001

The Web Client Security Update for Office 2000 protects you from a vulnerability in Office 2000 that can allow login information to be sent over the Internet. Malicious Web site operators could deceiv Free Download

Microsoft Windows 95 Patch: Security Vulnerabiliti

Update for Security Vulnerabilities in "Scriptlet.typlib" and "Eyedog" ActiveX Controls. This update eliminates the "scriptlet.typlib/eyedog" security vulnerability Free Download
Latest Software
  1. JenoSoft DVD to iPhone Video Converter 7.19
  2. JenoSoft iPhone Video Converter 7.12
  3. JenoSoft Apple TV Video Converter 7.12
  4. Microsoft Exchange 2000 Enterprise Edition Web Cli
  5. Http SMS Gateway 2.3 M2
  6. Microsoft Office 97 Forms 2.0 Control Security Pat Update
  7. Microsoft Outlook 98 Forms 2.0 Control Security
  8. Microsoft Project 98 Forms 2.0 Control Security
Popular Software
  1. WebFerret 1.3001
  2. Windows 95 Security Patch 5/22/97 5/22/97
  3. ChatSpace 1.4
  4. AvantGo Desktop and Web Client 3.0
  5. Windows 95 Credential Caching Security Patch
  6. Windows 98 Overrun Buffer Security Patch
  7. Microsoft VM File Reading Vulnerability patch 1
  8. Microsoft Clip Art Buffer Overrun Vulnerability Patch 1
Favourite Software
  1. JScript 5.6 Security Patch for Windows 2000 and XP MS03-008
  2. Visual Web Service Client Standard 3.3.0.2
  3. Microsoft Word 97 Patch: Template Security Update
  4. Windows ME Security Patches NA
  5. NTLM Authentication Vulnerability N/A
  6. Microsoft Outlook 98 Patch: Security
  7. Microsoft Exchange Server 5.5 Web Client Patch Update
  8. Microsoft Internet Explorer 6.0 Patch Security Vulnerabilities Update