Microsoft Windows 2000 Patch: Web Client NTLM Authentication

This update resolves the "Web Client NTLM Authentication" security vulnerability in Windows 2000 and Office 2000 and is discussed in Microsoft Security Bulletin MS01-001. Download now to ensure that your Web Extender Client (WEC) components are set to the recommended Internet Explorer security levels, to prevent a malicious Web site operator from capturing your logon credentials. Under specific conditions, this vulnerability allows a malicious Web site operator to obtain the cryptographically protected logon credentials of a visiting user. This is because the security settings for WEC components are set to incorrect levels, which allows your computer to send information about your authentication credentials to remote Web applications. The vulnerability exists because WEC, which allows Internet Explorer to view and publish files via Web Folders, does not adhere to the recommended security settings in Internet Explorer, and performs NTLM authentication for any server that requests it. A malicious Web site operator could format a document to request NTLM authentication from a visiting user automatically, causing the user's authentication credentials to be sent by default. Once the credentials are revealed, the operator may be able to use specialized tools to derive the user's password. Note This vulnerability affects only computers running versions of Internet Explorer later than 5.0 with Web Folders enabled. For more information about this vulnerability, read Microsoft Security Bulletin MS01-001.
PriceUSD0
LicenseFree
File Size1.57 MB
VersionUpdate
Operating System Windows Windows 2000
System Requirements<li>Windows NT 4 SP 6</li><li>Windows 2003 SP 1</li><li>Windows XP AMD 64-bit</li><li>Windows XP 64-bit SP 1</li><li>Windows NT 4 SP 2</li><li>Windows 2000 SP 1</li><li>Windows 2003 64-bit</li><li>Windows 2003 AMD 64-bit</li><li>Windows XP 64-bit SP 2</li><li>Windows NT 4 SP 3</li><li>Windows 2000 SP 2</li><li>Windows Server 2003 x64 R2</li><li>Windows 2000</li><li>Windows 2003 64-bit SP 1</li><li>Windows Vista AMD 64-bit</li><li>Windows XP Itanium 64-bit</li><li>Windows NT 4 SP 4</li><li>Windows 2000 SP 3</li><li>Windows NT 4</li><li>Windows XP 32-bit</li><li>Windows XP SP 1</li><li>Windows Server 2003 x86 R2</li><li>Windows ME</li><li>Windows 2003 Itanium 64-bit</li><li>Windows NT 4 SP 5</li><li>Windows 2000 SP 4</li><li>Windows Vista 32-bit</li><li>Windows XP 64-bit</li><li>Windows NT 4 SP 1</li><li>Windows Server 2008 x64</li><li>Windows NT 3</li><li>Windows Server 2008 x86</li><li>Windows XP</li><li>Windows Server 2008</li><li>Windows 2003</li><li>Windows Vista Itanium 64-bit</li><li>Windows XP Itanium 64-bit SP 1</li><li>Windows 2003 32-bit</li><li>Windows XP Itanium 64-bit SP 2</li><li>Windows XP SP 2</li><li>Windows 95</li><li>Windows 98</li><li>Windows Vista</li><li>Windows NT</li><li>Windows 2003 Itanium 64-bit SP 1</li><li>Windows XP Pro</li>