Oval Definition:oval:org.mitre.oval:def:1054
Revision Date:2011-05-16Version:48
Title:Windows XP winlogon Remote Buffer Overflow
Description:Buffer overflow in the Windows logon process (winlogon) in Microsoft Windows NT 4.0 SP6a, 2000 SP2 through SP4, and XP SP1, when a member of a domain, allows remote attackers to execute arbitrary code.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2003-0806
Platform(s):Microsoft Windows XP
Product(s):Windows logon process (winlogon)
Definition Synopsis
  • Software section
  • a vulnerable version of msgina.dll exists
  • 32-bit version of Windows and a vulnerable version of msgina.dll exists
  • 32-Bit version of Windows is installed
  • AND a vulnerable version of msgina.dll exists depending on service pack level
  • OR 64-bit version of Windows and msgina.dll is less than 5.1.2600.1343
  • a version of Windows for the ia64 architecture is installed
  • AND the version of msgina.dll is less than 5.1.2600.1343
  • AND NOT the patch kb835732 is installed
  • AND Windows XP (sp1 or earlier) is installed
  • Windows XP is installed
  • AND NOT Win2K/XP/2003 service pack 2 (or later) is installed
  • AND Configuration section
  • machine is a member of a domain
    • BACK