Oval Definition:
oval:org.mitre.oval:def:1923
Revision Date
:
2011-05-09
Version
:
47
Title
:
EMF Elevation of Privilege Vulnerability
Description
:
Buffer overflow in the Graphics Device Interface (GDI) in Microsoft Windows 2000 SP4; XP SP2; Server 2003 Gold, SP1, and SP2; and Vista allows local users to gain privileges via a crafted Enhanced Metafile (EMF) image format file.
Family
:
windows
Class
:
vulnerability
Status
:
ACCEPTED
Reference(s)
:
CVE-2007-1212
Platform(s)
:
Microsoft Windows 2000
Microsoft Windows Server 2003
Microsoft Windows Vista
Microsoft Windows XP
Product(s)
:
Definition Synopsis
Windows 2000 SP4
Microsoft Windows 2000 SP4 or later is installed
AND
gdi32.dll version is less than 5.0.2195.7133
OR
Windows XP SP2
Microsoft Windows XP SP2 or later is installed
AND
Gdi32.dll version is less than 5.1.2600.3099
OR
S03-Gold
Microsoft Windows Server 2003 (x86) Gold is installed
AND
gdi32.dll version is less than 5.2.3790.651
OR
S03,SP1
Microsoft Windows Server 2003 SP1 (x86) is installed
AND
gdi32.dll version is less than 5.2.3790.2892
OR
S03,SP2
Microsoft Windows Server 2003 SP2 (x86) is installed
AND
Gdi32.dll version is less than 5.2.3790.4033
OR
Windows Vista
Microsoft Windows Vista is installed
AND
the version of user32.dll is less than 6.0.6000.16438
BACK