PT-2004-1124 · Microsoft · Windows 2000+2

Published

2004-01-14

Updated

2019-04-30

CVE-2002-0034

CVSS v2.0

4.6

Medium

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Microsoft CONVERT.EXE versions used on Windows 2000 and Windows XP

Description The issue arises when the Microsoft CONVERT.EXE program is used to convert a FAT32 file system on Windows 2000 and Windows XP systems. It fails to apply the default NTFS permissions during the conversion process, potentially resulting in a file system with less secure permissions than expected.

Recommendations For Windows 2000 and Windows XP systems, manually apply the default NTFS permissions after converting a FAT32 file system using the Microsoft CONVERT.EXE program to ensure the desired level of security.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2002-0034

Affected Products

Convert.Exe

Windows 2000

Windows Xp

PT-2004-1124 · Microsoft · Windows 2000+2

CVE-2002-0034

Related Identifiers

Affected Products

References · 3