VYPR
Unrated severityNVD Advisory· Published Dec 31, 2002· Updated Jun 16, 2026

CVE-2002-2132

CVE-2002-2132

Description

Windows File Protection (WFP) in Windows 2000 and XP does not remove old security catalog .CAT files, which could allow local users to replace new files with vulnerable old files that have valid hash codes.

Affected products

21
  • cpe:2.3:o:microsoft:windows_2000:*:*:*:*:datacenter_server:*:*:*+ 15 more
    • cpe:2.3:o:microsoft:windows_2000:*:*:*:*:datacenter_server:*:*:*
    • cpe:2.3:o:microsoft:windows_2000:*:*:*:ja:server:*:*:*
    • cpe:2.3:o:microsoft:windows_2000:*:*:*:*:professional:*:*:*
    • cpe:2.3:o:microsoft:windows_2000:*:*:*:*:server:*:*:*
    • cpe:2.3:o:microsoft:windows_2000:*:sp1:*:*:advanced_server:*:*:*
    • cpe:2.3:o:microsoft:windows_2000:*:sp1:*:*:datacenter_server:*:*:*
    • cpe:2.3:o:microsoft:windows_2000:*:sp1:*:*:professional:*:*:*
    • cpe:2.3:o:microsoft:windows_2000:*:sp1:*:*:server:*:*:*
    • cpe:2.3:o:microsoft:windows_2000:*:sp2:*:*:advanced_server:*:*:*
    • cpe:2.3:o:microsoft:windows_2000:*:sp2:*:*:datacenter_server:*:*:*
    • cpe:2.3:o:microsoft:windows_2000:*:sp2:*:*:professional:*:*:*
    • cpe:2.3:o:microsoft:windows_2000:*:sp2:*:*:server:*:*:*
    • cpe:2.3:o:microsoft:windows_2000:*:sp3:*:*:advanced_server:*:*:*
    • cpe:2.3:o:microsoft:windows_2000:*:sp3:*:*:datacenter_server:*:*:*
    • cpe:2.3:o:microsoft:windows_2000:*:sp3:*:*:professional:*:*:*
    • cpe:2.3:o:microsoft:windows_2000:*:sp3:*:*:server:*:*:*
  • cpe:2.3:o:microsoft:windows_xp:*:gold:*:*:professional:*:*:*+ 4 more
    • cpe:2.3:o:microsoft:windows_xp:*:gold:*:*:professional:*:*:*
    • cpe:2.3:o:microsoft:windows_xp:*:*:*:*:home:*:*:*
    • cpe:2.3:o:microsoft:windows_xp:*:sp1:*:*:home:*:*:*
    • cpe:2.3:o:microsoft:windows_xp:*:sp1:*:*:*:*:x64:*
    • cpe:2.3:o:microsoft:windows_xp:*:*:*:*:*:*:x64:*

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.