Windows 2000 Security Patch: Standalone SMTP Server Authenticates Unknown Users Vulnerability

Select Language:
Microsoft has released a patch that eliminates “Authentication Error in SMTP Service” vulnerability. SMTP service installs by default with Windows 2000 server products, and optionally on Windows 2000 Professional.
  • Version:

    All

    File Name:

    Q302755_W2k_SP3_x86_en.exe

    Date Published:

    7/9/2001

    File Size:

    918 KB

    KB Articles: KB302755

      Microsoft has released a patch that eliminates “Authentication Error in SMTP Service” vulnerability. SMTP service installs by default with Windows 2000 server products, and optionally on Windows 2000 Professional. A vulnerability results from a flaw that could allow an unauthorized user to successfully authenticate using incorrect credentials. An attacker who exploited this could gain user-level privileges on the SMTP service, enabling the attacker to use the service but not to administer it.
  • Supported Operating System

    Windows 2000

      Microsoft Windows versions 2000, 2000 SP1, 2000 SP2 Professional
      Microsoft Windows versions 2000, 2000 SP1, 2000 SP2 Server
      Microsoft Windows versions 2000, 2000 SP1, 2000 SP2 Advanced Server
    • Select "Run this Program from its Current Location" to start the install immediately. OR
      Select "Save this Program to Disk" to copy the download to your machine for installation at a later time.