CVE-2002-0443
First published: Fri Jul 26 2002(Updated: )
Microsoft Windows 2000 allows local users to bypass the policy that prohibits reusing old passwords by changing the current password before it expires, which does not enable the check for previous passwords.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Windows 2000 | ||
| Microsoft Windows 2000 | =sp2 | |
| Microsoft Windows 2000 | =sp1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2002-0443?
CVE-2002-0443 is considered a moderate severity vulnerability as it allows local users to bypass password reuse policies.
How do I fix CVE-2002-0443?
To mitigate CVE-2002-0443, ensure that password policies are properly enforced and consider using a more secure authentication method.
Who is affected by CVE-2002-0443?
Users of Microsoft Windows 2000, especially those using service packs 1 and 2, are affected by CVE-2002-0443.
What type of vulnerability is CVE-2002-0443?
CVE-2002-0443 is an authentication vulnerability that allows users to reuse old passwords.
Can CVE-2002-0443 be exploited remotely?
No, CVE-2002-0443 can only be exploited by local users who have access to the system.
- collector/nvd-historical
- collector/nvd-index
- agent/type
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/references
- agent/weakness
- agent/last-modified-date
- agent/author
- agent/event
- agent/tags
- agent/description
- agent/source
- vendor/microsoft
- canonical/microsoft windows 2000
- version/microsoft windows 2000/sp2
- version/microsoft windows 2000/sp1