CVE-2002-1932

Name of the Vulnerable Software and Affected Versions Microsoft Windows XP and Windows 2000

Description The issue concerns a configuration where administrative alerts are sent and the option to not overwrite events is set. In this setup, when the log reaches its maximum size, no notification is sent to the administrator. This allows local users and remote attackers to potentially avoid detection.

Recommendations For Microsoft Windows XP and Windows 2000, consider disabling the "Do not overwrite events (clear log manually)" option to ensure logs are properly managed and notifications are sent when the log reaches its maximum size. Additionally, regularly monitor and clear logs manually to prevent them from reaching maximum size and to ensure administrative alerts are effective.