Microsoft Windows 2000 SP4 does not properly validate an RPC server during mutual authentication over SSL, which allows remote attackers to spoof an RPC server, aka the “RPC Mutual Authentication Vulnerability.”
secunia.com/advisories/20637
securitytracker.com/id?1016289
www.osvdb.org/26438
www.securityfocus.com/bid/18389
www.vupen.com/english/advisories/2006/2328
docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-031
exchange.xforce.ibmcloud.com/vulnerabilities/26836
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1763