• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 2607
  • Last Modified:

Solution for: Account Brute Force Possible Through IIS NTLM Authentication Scheme CVE-2002-0419

Please help to resolve the vulnerability:-Account Brute Force Possible Through IIS NTLM Authentication Scheme CVE-2002-0419
How to resolve this in Win 2003/2008?
Although I have got workaround:- disable NTLM authentication for your Web server. This can be done by unchecking "Integrated Windows Authentication" within "Authentication Method" under "Directory Security" in "Default Web Site Properties".
Is this fine for my webservers[win 2k3/2k8], will it require any Reboot/IIS Restart?
Is there any other better way to resolve this?

0
patron
Asked:
patron
  • 4
  • 3
3 Solutions
 
dj_alikCommented:
Restart Application Pool for specific Application/Virtual Directory
0
 
patronAuthor Commented:
Thanks, will that work around work for me...will there be any impact for internal/external users accessing websites after disabling Integrated Windows Authentication?
0
 
dj_alikCommented:
Is  anonymous user enabled?
Check f you have some connection in internal SQL DB and etc... based  on Integrated Windows Security.
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
patronAuthor Commented:
Yes, Anonymous is enabled of all there servers and for more detail………

one is my exchange server-users are accessing it internally and externally
Second is prod. website
Third is some internal application access by user internally and externally
0
 
dj_alikCommented:
Let's try
0
 
patronAuthor Commented:
i m trying to get approval to implement the same in prod, while in test we have redirected request through another server.
0
 
patronAuthor Commented:
Thanks
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

  • 4
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now