|
Family: Windows : User management --> Category: infos
Users information : Never changed password Vulnerability Scan
Vulnerability Scan Summary Lists the users that have special privileges
Detailed Explanation for this Vulnerability Test
Synopsis :
It is possible to retrieve users who can never changed their password
using the supplied credentials.
Description :
Using the supplied credentials it was possible to extract the list of
domain users who never changed their password.
It is recommended to allow/force users to change their password for
security reasons.
Threat Level:
Medium / CVSS Base Score : 4
(AV:R/AC:L/Au:NR/C:P/A:N/I:N/B:C)
Click HERE for more information and discussions on this network vulnerability scan.
|