CVE-2002-1769 Information

Description

Microsoft Site Server 3.0 prior to SP4 installs a default user LDAP_Anonymous with a default password of LdapPassword_1 which allows remote attackers the \Log on locally\ privilege.

Reference

http://archives.neohapsis.com/archives/vulnwatch/2002-q1/0033.html http://online.securityfocus.com/advisories/3843 http://support.microsoft.com/default.aspx?scid=kb;en-us;Q248840 http://www.securityfocus.com/bid/3998 https://exchange.xforce.ibmcloud.com/vulnerabilities/8048