CVE-2005-1982
Description
Unknown vulnerability in the PKINIT Protocol for Microsoft Windows 2000, Windows XP, and Windows Server 2003 could allow a local user to obtain information and spoof a server via a man-in-the-middle (MITM) attack between a client and a domain controller when PKINIT smart card authentication is being used.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
9cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*
- (no CPE)
cpe:2.3:o:microsoft:windows_2003_server:enterprise:*:64-bit:*:*:*:*:*+ 4 more
- cpe:2.3:o:microsoft:windows_2003_server:enterprise:*:64-bit:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2003_server:r2:*:64-bit:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2003_server:standard:*:64-bit:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2003_server:web:*:*:*:*:*:*:*
- (no CPE)
cpe:2.3:o:microsoft:windows_xp:*:gold:professional:*:*:*:*:*+ 1 more
- cpe:2.3:o:microsoft:windows_xp:*:gold:professional:*:*:*:*:*
- (no CPE)
Patches
Vulnerability mechanics
Root cause
"Unknown weakness in the PKINIT protocol allows a man-in-the-middle attacker to obtain information and spoof a domain controller during smart card authentication."
Attack vector
An attacker positioned as a man-in-the-middle (MITM) between a client and a domain controller can intercept PKINIT smart card authentication traffic [ref_id=1]. By exploiting the unknown protocol weakness, the attacker can obtain information and spoof the server to the client. The attack requires the attacker to have network access to the communication path and for PKINIT smart card authentication to be in use [ref_id=1].
Affected code
The advisory does not specify exact functions or file paths. The vulnerability resides in the PKINIT protocol implementation used during smart card authentication between a client and a domain controller in Windows 2000, Windows XP, and Windows Server 2003 [ref_id=1].
What the fix does
The security update modifies the PKINIT protocol handling to close the information disclosure and spoofing vector [ref_id=1]. Additionally, the update introduces an optional registry key, RequireAsChecksum, which provides extra protection against potential PKINIT-related attacks [ref_id=1]. The advisory notes that both domain controllers and domain clients must install the update to fully protect against this vulnerability [ref_id=1].
Preconditions
- configPKINIT smart card authentication must be in use between client and domain controller
- networkAttacker must be positioned to perform a man-in-the-middle (MITM) attack on the network path
Generated on May 26, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
11- secunia.com/advisories/16368/nvdPatchVendor Advisory
- www.kb.cert.org/vuls/id/477341nvdUS Government Resource
- securitytracker.com/idnvd
- www.securityfocus.com/bid/14520nvd
- docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-042nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100096nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100098nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100100nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100102nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100104nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100106nvd
News mentions
0No linked articles in our index yet.