Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2002-1184

The system root folder of Microsoft Windows 2000 has default permissions of Everyone group with Full access (Everyone:F) and is in the search path when locating programs during login or application launch from the desktop, which could allow attackers to gain privileges as other users via Trojan horse programs.

  • Published: Nov 12, 2002
  • Updated: Apr 13, 2023
  • CVE: CVE-2002-1184
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 4.6
  • AV:L/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Software From Fixed in
microsoft / windows_nt 4.0-sp5 4.0-sp5.x
microsoft / windows_nt 4.0-sp3 4.0-sp3.x
microsoft / windows_nt 4.0-sp6a 4.0-sp6a.x
microsoft / windows_2000 - -
microsoft / windows_nt 4.0 4.0.x
microsoft / windows_nt 4.0-sp1 4.0-sp1.x
microsoft / windows_nt 4.0-sp6 4.0-sp6.x
microsoft / windows_nt 4.0-sp4 4.0-sp4.x
microsoft / windows_nt 4.0-sp2 4.0-sp2.x