Microsoft Windows 2000 Domain Expired Account Authentication
Local Access Required,
Remote / Network Access
Loss of Integrity
Microsoft Windows 2000 contains a flaw that may allow a malicious user to authenticate with an account that has an expired password. The issue is triggered when the fully qualified domain name is exactly 8 characters. It is possible that the flaw may allow the user to authenticate resulting in a loss of integrity.
Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability.