Oval Definition:	oval:org.mitre.oval:def:15209
Revision Date: 2012-07-30 Version: 44 Title: BIOS ROM Corruption Vulnerability (CVE-2012-1515) Description: VMware ESXi 3.5, 4.0, and 4.1 and ESX 3.5, 4.0, and 4.1 do not properly implement port-based I/O operations, which allows guest OS users to gain guest OS privileges by overwriting memory locations in a read-only memory block associated with the Virtual DOS Machine. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2012-1515 Platform(s): Microsoft Windows Server 2003 Microsoft Windows XP Product(s): Definition Synopsis Win XP X86 and vuln file version Microsoft Windows XP (x86) SP3 is installed AND Check if the version of Ntoskrnl.exe is less than 5.1.2600.6223 OR Win 2K3 X86 and vuln file version Microsoft Windows Server 2003 SP2 (x86) is installed AND Check if the version of Ntoskrnl.exe is less than 5.2.3790.4998
BACK