Security 10817 Published by

Microsoft has released a patch that eliminates a security vulnerability affecting Microsoft:registered: Windows:registered: 2000 domain controllers. The vulnerability could allow a malicious user with physical access to a domain controller to install malicious software on it.

Frequently asked questions regarding this vulnerability and the patch can be found at http://www.microsoft.com/technet/security/bulletin/fq00-099.asp

Affected Software Versions

Microsoft Windows 2000 Server
Microsoft Windows 2000 Advanced Server

Note: Windows 2000 workstations are unaffected by this vulnerability.
Patch Availability

http://www.microsoft.com/Downloads/Release.asp?ReleaseID=26483

Note: On Windows 2000 Server and Advanced Server systems, this patch can be installed atop either the Gold version or Service Pack 1. It will be included in Windows Server and Advanced Server, Service Pack 2.