Oval Definition:oval:org.mitre.oval:def:11758
Revision Date:2011-08-01Version:23
Title:DFS Memory Corruption Vulnerability
Description:The Distributed File System (DFS) implementation in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 does not properly validate fields in DFS responses, which allows remote DFS servers to execute arbitrary code via a crafted response, aka "DFS Memory Corruption Vulnerability."
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2011-1868
Platform(s):Microsoft Windows Server 2003
Microsoft Windows XP
Product(s):
Definition Synopsis
  • Vulnerable Microsoft Windows XP (x86) SP3
  • Microsoft Windows XP (x86) SP3 is installed
  • AND The version of Mup.sys is less than 5.1.2600.6103
  • OR Vulnerable Microsoft Windows XP x64 SP2, Server 2003 x86/x64/ia64 SP2
  • Vulnerable Microsoft Windows XP x64 SP2, Server 2003 x86/x64/ia64 SP2
  • Microsoft Windows XP x64 Edition SP2 is installed
  • OR Microsoft Windows Server 2003 SP2 (x86) is installed
  • OR Microsoft Windows Server 2003 SP2 (x64) is installed
  • OR Microsoft Windows Server 2003 (ia64) SP2 is installed
  • AND The version of Mup.sys is less than 5.2.3790.4851
    • BACK