CVE-2002-1184

Name of the Vulnerable Software and Affected Versions: Microsoft Windows 2000

Description: The system root folder of Microsoft Windows 2000 has default permissions that allow the Everyone group to have Full access. This could enable attackers to gain privileges as other users via Trojan horse programs, as the system root folder is in the search path when locating programs during login or application launch from the desktop.

Recommendations: For Microsoft Windows 2000, consider restricting the permissions of the Everyone group on the system root folder to minimize the risk of exploitation. As a temporary workaround, monitor the system for any suspicious activity and restrict the execution of programs from untrusted sources. At the moment, there is no information about a newer version that contains a fix for this vulnerability.