Vulnerability Details CVE-2002-2132
Windows File Protection (WFP) in Windows 2000 and XP does not remove old security catalog .CAT files, which could allow local users to replace new files with vulnerable old files that have valid hash codes.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 73.3%
CVSS Severity
CVSS v2 Score 2.1
References
- http://archives.neohapsis.com/archives/bugtraq/2002-12/0250.html
- http://www.iss.net/security_center/static/10957.php
- http://www.securityfocus.com/bid/6483
- http://archives.neohapsis.com/archives/bugtraq/2002-12/0250.html
- http://www.iss.net/security_center/static/10957.php
- http://www.securityfocus.com/bid/6483
Products affected by CVE-2002-2132
-
cpe:2.3:o:microsoft:windows_2000:-
-
cpe:2.3:o:microsoft:windows_xp:-