Vulnerabilities > CVE-2002-0697 - Remote LDAP Client Administration vulnerability in Microsoft Metadirectory Services 2.2

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

microsoft

critical

NVD

Published: 2002-08-12

Updated: 2018-10-12

Summary

Microsoft Metadirectory Services (MMS) 2.2 allows remote attackers to bypass authentication and modify sensitive data by using an LDAP client to directly connect to MMS and bypass the checks for MMS credentials.

Vulnerable Configurations

Part	Description	Count
Application	Microsoft Microsoft Metadirectory Services 2.2	1

References

http://www.iss.net/security_center/static/9657.php
http://www.securityfocus.com/bid/5308
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-036