Group Policy Bypass Vulnerability in Microsoft Windows 2000 Terminal Server

Group Policy Bypass Vulnerability in Microsoft Windows 2000 Terminal Server

CVE-2002-0444 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Microsoft Windows 2000 running the Terminal Server 90-day trial version, and possibly other versions, does not apply group policies to incoming users when the number of connections to the SYSVOL share exceeds the maximum, e.g. with a maximum number of licenses, which can allow remote authenticated users to bypass group policies.

Learn more about our Cis Benchmark Audit For Server Software.