CVE-2002-2132

Windows File Protection (WFP) in Windows 2000 and XP does not remove old security catalog .CAT files, which could allow local users to replace new files with vulnerable old files that have valid hash codes.

Date published : 2005-11-16

http://www.securityfocus.com/bid/6483

http://archives.neohapsis.com/archives/bugtraq/2002-12/0250.html