Oval Definition:oval:org.mitre.oval:def:1718
Revision Date:2004-08-04Version:41
Title:Windows Virtual DOS Machine Local Privilege Escalation Vulnerability (Test 2)
Description:The component for the Virtual DOS Machine (VDM) subsystem in Windows NT 4.0 and Windows 2000 does not properly validate system structures, which allows local users to access protected kernel memory and execute arbitrary code.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2004-0118
Platform(s):Microsoft Windows NT
Product(s):VDM
Definition Synopsis
  • Windows 2000 is installed
  • AND NOT the patch kb835732 is installed
  • AND Version check of Ntoskrnl for NT Terminal Server or NT Workstation
  • Version Ntoskrnl.exe is less than 4.0.1381.7265 and this is an NT Workstation
  • The version of Ntoskrnl.exe is less than 4.0.1381.7265
  • AND this is an NT Workstation
  • OR This is an NT Terminal Server and the version of Ntoskrnl.exe is less than 4.0.1381.33563
  • The version of Ntoskrnl.exe is less than 4.0.1381.33563
  • AND this is an NT Terminal Server
  • BACK