Oval Definition:oval:org.mitre.oval:def:1639
Revision Date:2011-05-09Version:44
Title:Kernel Local Elevation of Privilege Vulnerability
Description:The Virtual DOS Machine (VDM) in the Windows Kernel in Microsoft Windows NT 4.0; 2000 SP4; XP SP2; Server 2003, 2003 SP1, and 2003 SP2; and Windows Vista before June 2006; uses insecure permissions (PAGE_READWRITE) for a physical memory view, which allows local users to gain privileges by modifying the "zero page" during a race condition before the view is unmapped.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2007-1206
Platform(s):Microsoft Windows 2000
Microsoft Windows Server 2003
Microsoft Windows XP
Product(s):
Definition Synopsis
  • Windows 2000 SP4
  • Microsoft Windows 2000 SP4 or later is installed
  • AND The version of Ntoskrnl.exe is less than 5.0.2195.7133.
  • OR Windows XP SP2
  • Microsoft Windows XP SP2 or later is installed
  • AND The version of Ntoskrnl.exe is less than 5.1.2600.3093.
  • OR Windows Server 2003 Gold version
  • Microsoft Windows Server 2003 is installed
  • AND The version of Ntoskrnl.exe is less than 5.2.3790.652.
  • OR Windows Server 2003 Service Pack 1 version
  • Microsoft Windows Server 2003 SP1 (x86) is installed
  • AND The version of Ntoskrnl.exe is less than 5.2.3790.2894.
  • OR Windows Server 2003 Service Pack 2 version
  • Microsoft Windows Server 2003 SP2 (x86) is installed
  • AND The version of Ntoskrnl.exe is less than 5.2.3790.4035.
    • BACK