Article ID: 276521 - View products that this article applies to.
This article was previously published under Q276521
This article has been archived. It is offered "as is" and will no longer be updated.
While you trace the computer account-related network traffic of a domain, a user may be able to view a computer password in plain text.
This problem occurs because the NetpCreateComputerObjectInOU function is used to create objects in an organizational unit. The function uses Lightweight Directory Access Protocol (LDAP) to set the computer password without setting the encryption option before ldap_bind_s is called.
A supported hotfix is available from Microsoft. However, this hotfix is intended to correct only the problem that is described in this article. Apply this hotfix only to systems that are experiencing this specific problem.
If the hotfix is available for download, there is a "Hotfix download available" section at the top of this Knowledge Base article. If this section does not appear, submit a request to Microsoft Customer Service and Support to obtain the hotfix.
Note If additional issues occur or if any troubleshooting is required, you might have to create a separate service request. The usual support costs will apply to additional support questions and issues that do not qualify for this specific hotfix. For a complete list of Microsoft Customer Service and Support telephone numbers or to create a separate service request, visit the following Microsoft Web site:
http://support.microsoft.com/contactus/?ws=supportNote The "Hotfix download available" form displays the languages for which the hotfix is available. If you do not see your language, it is because a hotfix is not available for that language. The English-language version of this fix should have the following file attributes or later:
Date Time Size File name --------------------------------------- 4/5/2001 6:20AM 135,459 Netapi32.dll
Microsoft has confirmed that this is a problem in Windows NT 4.0 and Microsoft Windows 2000.
The fix for this problem has the NetpCreateComputerObjectInOU function not use LDAP to handle the password but to use the tested and proved SAM function, NetUserSetInfo.
This problem is fixed in Windows 2000 SP2. The binary is Netapi32.dll.
For additional information about how to install Windows 2000 and Windows 2000 hotfixes at the same time, click the article number below to view the article in the Microsoft Knowledge Base:
(http://support.microsoft.com/kb/249149/EN-US/ )Installing Microsoft Windows 2000 and Windows 2000 Hotfixes
Article ID: 276521 - Last Review: October 21, 2013 - Revision: 3.6