CVE-2002-0034 — MEDIUM severity vulnerability (The Microsoft CONVERT.EXE program, when used on Windows 2000)
The Microsoft CONVERT.EXE program, when used on Windows 2000 and Windows XP systems, does not apply the default NTFS permissions when converting a FAT32 file system, which could cause the conversion to produce a file system with less secure permissions than expected.
| CVE ID | CVE-2002-0034 |
|---|---|
| Severity | MEDIUM |
| CVSS score | 4.6 |
| CVSS vector | AV:L/AC:L/Au:N/C:P/I:P/A:P |
| CWE | NVD-CWE-Other |
| Status | Modified |
| Published | 2004-02-03 |
| Last modified | 2026-04-16 |
| Description | The Microsoft CONVERT.EXE program, when used on Windows 2000 and Windows XP systems, does not apply the default NTFS permissions when converting a FAT32 file system, which could cause the conversion to produce a file system with less secure permissions than expected. |
| Source | NIST National Vulnerability Database |
🔍 Search all vulnerabilities →
$999/mo
Try CVECheck →