1.8
CVSSv2

CVE-2007-2999

CVSSv4: NA | CVSSv3: NA | CVSSv2: 1.8 | VMScore: 280 | EPSS: 0.00227 | KEV: Not Included
Published: 04/06/2007 Updated: 21/11/2024

Vulnerability Summary

Microsoft Windows Server 2003, when time restrictions are in effect for user accounts, generates different error messages for failed login attempts with a valid user name than for those with an invalid user name, which allows context-dependent malicious users to determine valid Active Directory account names.

Vulnerable Product Search on Vulmon Subscribe to Product

microsoft windows 2003 server gold

microsoft windows 2003 server sp1

microsoft windows 2003 server sp2