CVE-2002-2324

Name of the Vulnerable Software and Affected Versions Windows XP Professional (affected versions not specified)

Description The issue concerns insecure access control list (ACL) permissions in the "System Restore" directory and its subdirectories, as well as possibly other subdirectories in the "System Volume Information" directory. This allows local users to access restricted files and modify registry settings.

Recommendations For Windows XP Professional, consider restricting access to the "System Restore" directory and its subdirectories, as well as other sensitive subdirectories in the "System Volume Information" directory, to prevent local users from accessing restricted files and modifying registry settings. At the moment, there is no information about a newer version that contains a fix for this vulnerability.