The NETLOGON service in Microsoft Windows Server 2003 SP2, Windows Server 2008 SP2 and R2 SP1, and Windows Server 2012 Gold and R2, when a Domain Controller is configured, allows remote attackers to spoof the computer name of a secure channel's endpoint, and obtain sensitive session information, by running a crafted application and leveraging the ability to sniff network traffic, aka "NETLOGON Spoofing Vulnerability."

在Microsoft Windows Server 2003 SP2、Windows Server 2008 SP2和R2 SP1以及Windows Server 2012 Gold和R2中，当配置一个域控制器时，NETLOGON服务允许远程攻击者伪造安全通道的端点计算机名称，并获取敏感会话信息，通过运行配置好的应用程序并利用捕获网络流量的能力，aka "NETLOGON伪造漏洞"。

NVD 暂无评分

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

NVD 暂无漏洞类别信息

神龙GPT 暂无漏洞类别信息（请耐心等待）