Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-2324

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2002-2324
Last Modified 05 Sep 2008 04:32:55
Published 31 Dec 2002 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2002-2324

Summary

The "System Restore" directory and subdirectories, and possibly other subdirectories in the "System Volume Information" directory on Windows XP Professional, have insecure access control list (ACL) permissions, which allows local users to access restricted files and modify registry settings.

Vulnerable Systems

Operating System

  • Microsoft Windows Xp


References

BID - 5894

XF - winxp-systemrestore-directory-access(10279)

BUGTRAQ - 20021004 WinXP Pro(Gold) Insecure System Restore File Permissions


Last Updated: 27 May 2016 10:37:42