CVE-2005-3169 : Microsoft Windows 2000 before Update Rollup 1 for SP4, when the "audit directory service access" policy is enabled, does

Microsoft Windows 2000 before Update Rollup 1 for SP4, when the "audit directory service access" policy is enabled, does not record a 565 event message for File Delete Child operations on an Active Directory object in the security event log, which could allow attackers to conduct unauthorized activities without detection.

Published 2005-10-06 10:02:00

Updated 2008-09-05 20:53:39

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2005-3169

Probability of exploitation activity in the next 30 days: 0.12%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 44 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2005-3169

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.0	MEDIUM	AV:N/AC:L/Au:N/C:N/I:P/A:N	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: None

References for CVE-2005-3169

http://support.microsoft.com/kb/833873

Patch;Vendor Advisory
http://support.microsoft.com/kb/900345

Error - Office.com - Microsoft Support
Patch;Vendor Advisory

CVEs referencing this url

Products affected by CVE-2005-3169

Microsoft » Windows 2000 » Update SP4 Language FR
cpe:2.3:o:microsoft:windows_2000:*:sp4:*:fr:*:*:*:*
Matching versions

Vulnerability Details : CVE-2005-3169

Exploit prediction scoring system (EPSS) score for CVE-2005-3169

CVSS scores for CVE-2005-3169

References for CVE-2005-3169

Products affected by CVE-2005-3169