Elevation of privilege vulnerability in NETLOGON in Microsoft Windows - CVE-2015-2374ID: oval:org.secpod.oval:def:25336 | Date: (C)2015-07-15 (M)2021-06-02 |
Class: VULNERABILITY | Family: windows |
The host is installed with Microsoft Windows Server 2003, 2003 SP2, 2008, 2008 SP2, 2008 R2, 2008 R2 SP1, 2012 or 2012 R2 and is prone to an elevation of privilege vulnerability. A flaw is present in the application, which fails to properly establish a secure communications channel to a primary domain controller (PDC). Successful exploitation could allow attackers to establish a secure channel to the PDC as a backup domain controller (BDC).
Platform: |
Microsoft Windows Server 2003 |
Microsoft Windows Server 2008 |
Microsoft Windows Server 2008 R2 |
Microsoft Windows Server 2012 |
Microsoft Windows Server 2012 R2 |