CVE-2002-1932 Information

Description

Microsoft Windows XP and Windows 2000 when configured to send administrative alerts and the \Do not overwrite events (clear log manually)\ option is set does not notify the administrator when the log reaches its maximum size which allows local users and remote attackers to avoid detection.

Reference

http://online.securityfocus.com/archive/1/295341 http://support.microsoft.com/default.aspx?scid=kb;[LN];329350 http://www.iss.net/security_center/static/10377.php http://www.securityfocus.com/bid/5972