This update resolves the "Mixed Object Access" security vulnerability in Windows 2000 and is discussed in Microsoft Security Bulletin MS00-026. Installing this update will prevent a malicious user from modifying information in the Active Directory. This vulnerability can only be exploited under very specific conditions, by a user who already has authority to modify information in the Active Directory. Only Windows 2000 domain controllers are affected by the vulnerability, and Windows 2000 auditing allows administrators to determine who made the change.

For more information about this vulnerability, read Microsoft Security Bulletin MS00-026. (This site may be in English.)

This update applies to:

• Windows 2000 Server
• Windows 2000 Advanced Server

1. Click Start, point to Settings and click Control Panel.
2. Double-click Add or Remove Programs.
3. Select Windows 2000 Hotfix (Pre-Sp1) [See Q259401 for more information] and click Change/Remove to uninstall.