CyberSec.Space Logo
Back to CVE Browser

CVE-2004-0540

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0110%
EPSS Percentile41.41th
PublishedAug 6, 2004
Last ModifiedApr 16, 2026

Vulnerability Description

Microsoft Windows 2000, when running in a domain whose Fully Qualified Domain Name (FQDN) is exactly 8 characters long, does not prevent users with expired passwords from logging on to the domain.

Affected Platforms (CPE)

πŸ’»
Microsoft

Windows 2000

All versions

References & Advisories

πŸ”— http://secunia.com/advisories/11746/
πŸ”— http://support.microsoft.com/default.aspx?scid=kb%3Ben-us%3B830847
πŸ”— http://secunia.com/advisories/11746/
πŸ”— http://support.microsoft.com/default.aspx?scid=kb%3Ben-us%3B830847

Related Vulnerabilities

CVE-2000-103410.0

Buffer overflow in the System Monitor ActiveX control in Windows 2000 allows remote attackers to execute arbitrary commands via a ...

CVE-2000-006110.0

Internet Explorer 5 does not modify the security zone for a document that is being loaded into a window until after the document h...

CVE-2000-022210.0

The installation for Windows 2000 does not activate the Administrator password until the system has rebooted, which allows remote ...

CVE-2000-107110.0

The GUI installation for iCal 2.1 Patch 2 disables access control for the X server using an "xhost +" command, which allows remote...