CVE-2001-0048

Description

The Configure Your Server tool in Microsoft 2000 domain controllers installs a blank password for the Directory Service Restore Mode, which allows attackers with physical access to the controller to install malicious programs, aka the Directory Service Restore Mode Password vulnerability.

Risk Information

Base Score

7.1

MODERATE

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

EPSS Score

Exploitation Probability

0.368

Associated Vulnerability

No records found

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234