Lucene search

[email protected]NVD:CVE-2002-2324

HistoryDec 31, 2002 - 5:00 a.m.

CVE-2002-2324

2002-12-3105:00:00

CWE-264

[email protected]

web.nvd.nist.gov

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.4

Confidence

High

EPSS

Percentile

12.7%

JSON

The “System Restore” directory and subdirectories, and possibly other subdirectories in the “System Volume Information” directory on Windows XP Professional, have insecure access control list (ACL) permissions, which allows local users to access restricted files and modify registry settings.

Affected configurations

Nvd

Node

microsoftwindows_xp

VendorProductVersionCPE
microsoftwindows_xp*cpe:2.3:o:microsoft:windows_xp:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	windows_xp	*	cpe:2.3:o:microsoft:windows_xp::::::::

References

archives.neohapsis.com/archives/bugtraq/2002-10/0070.html

www.iss.net/security_center/static/10279.php

www.securityfocus.com/bid/5894

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.4

Confidence

High

EPSS

Percentile

12.7%

JSON

Related for NVD:CVE-2002-2324

cve1 cvelist1