Lucene search

[email protected]CVE-2002-2324

HistoryOct 03, 2022 - 4:23 p.m.

CVE-2002-2324

2022-10-0316:23:49

CWE-264

[email protected]

web.nvd.nist.gov

nvd

cve-2002-2324

windows

acl

security

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.8 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

12.9%

JSON

The “System Restore” directory and subdirectories, and possibly other subdirectories in the “System Volume Information” directory on Windows XP Professional, have insecure access control list (ACL) permissions, which allows local users to access restricted files and modify registry settings.

Affected configurations

NVD

Node

microsoftwindows_xp

CPENameOperatorVersion
microsoft:windows_xpmicrosoft windows xpeq*

CPE	Name	Operator	Version
microsoft:windows_xp	microsoft windows xp	eq	*

References

archives.neohapsis.com/archives/bugtraq/2002-10/0070.html

www.iss.net/security_center/static/10279.php

www.securityfocus.com/bid/5894

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.8 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

12.9%

JSON

Related for CVE-2002-2324

nvd1 cvelist1