Unrated severityNVD Advisory· Published Dec 31, 2002· Updated Jun 16, 2026
CVE-2002-2132
CVE-2002-2132
Description
Windows File Protection (WFP) in Windows 2000 and XP does not remove old security catalog .CAT files, which could allow local users to replace new files with vulnerable old files that have valid hash codes.
Affected products
21cpe:2.3:o:microsoft:windows_2000:*:*:*:*:datacenter_server:*:*:*+ 15 more
- cpe:2.3:o:microsoft:windows_2000:*:*:*:*:datacenter_server:*:*:*
- cpe:2.3:o:microsoft:windows_2000:*:*:*:ja:server:*:*:*
- cpe:2.3:o:microsoft:windows_2000:*:*:*:*:professional:*:*:*
- cpe:2.3:o:microsoft:windows_2000:*:*:*:*:server:*:*:*
- cpe:2.3:o:microsoft:windows_2000:*:sp1:*:*:advanced_server:*:*:*
- cpe:2.3:o:microsoft:windows_2000:*:sp1:*:*:datacenter_server:*:*:*
- cpe:2.3:o:microsoft:windows_2000:*:sp1:*:*:professional:*:*:*
- cpe:2.3:o:microsoft:windows_2000:*:sp1:*:*:server:*:*:*
- cpe:2.3:o:microsoft:windows_2000:*:sp2:*:*:advanced_server:*:*:*
- cpe:2.3:o:microsoft:windows_2000:*:sp2:*:*:datacenter_server:*:*:*
- cpe:2.3:o:microsoft:windows_2000:*:sp2:*:*:professional:*:*:*
- cpe:2.3:o:microsoft:windows_2000:*:sp2:*:*:server:*:*:*
- cpe:2.3:o:microsoft:windows_2000:*:sp3:*:*:advanced_server:*:*:*
- cpe:2.3:o:microsoft:windows_2000:*:sp3:*:*:datacenter_server:*:*:*
- cpe:2.3:o:microsoft:windows_2000:*:sp3:*:*:professional:*:*:*
- cpe:2.3:o:microsoft:windows_2000:*:sp3:*:*:server:*:*:*
cpe:2.3:o:microsoft:windows_xp:*:gold:*:*:professional:*:*:*+ 4 more
- cpe:2.3:o:microsoft:windows_xp:*:gold:*:*:professional:*:*:*
- cpe:2.3:o:microsoft:windows_xp:*:*:*:*:home:*:*:*
- cpe:2.3:o:microsoft:windows_xp:*:sp1:*:*:home:*:*:*
- cpe:2.3:o:microsoft:windows_xp:*:sp1:*:*:*:*:x64:*
- cpe:2.3:o:microsoft:windows_xp:*:*:*:*:*:*:x64:*
Patches
Vulnerability mechanics
References
3- www.securityfocus.com/bid/6483nvdThird Party AdvisoryVDB Entry
- archives.neohapsis.com/archives/bugtraq/2002-12/0250.htmlnvdBroken Link
- www.iss.net/security_center/static/10957.phpnvdBroken Link
News mentions
0No linked articles in our index yet.