CVE-2002-2324

Published: Dec 31, 2002Modified: Apr 16, 2026

7.2

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 3.9 / Impact: 10.0

Source: NVD

Description

The "System Restore" directory and subdirectories, and possibly other subdirectories in the "System Volume Information" directory on Windows XP Professional, have insecure access control list (ACL) permissions, which allows local users to access restricted files and modify registry settings.

Affected (1)

Products: Microsoft: Windows Xp

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Microsoft Windows Xp	All versions

Related CWEs

References (6)

http://archives.neohapsis.com/archives/bugtraq/2002-10/0070.html

Source: cve@mitre.org

Exploit

http://www.iss.net/security_center/static/10279.php

Source: cve@mitre.org

http://www.securityfocus.com/bid/5894

Source: cve@mitre.org

http://archives.neohapsis.com/archives/bugtraq/2002-10/0070.html

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit

http://www.iss.net/security_center/static/10279.php

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/5894

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.