Oval Definition:	oval:org.mitre.oval:def:199
Revision Date: 2012-04-16 Version: 24 Title: Weak Encryption in RDP Protocol Description: Remote Data Protocol (RDP) version 5.0 in Microsoft Windows 2000 and RDP 5.1 in Windows XP does not encrypt the checksums of plaintext session data, which could allow a remote attacker to determine the contents of encrypted sessions via sniffing, aka "Weak Encryption in RDP Protocol." Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2002-0863 Platform(s): Microsoft Windows 2000 Product(s): Remote Data Protocol (RDP) Definition Synopsis Software section Terminal Server Version AND File %windir%\system32\drivers\rdpwd.sys version is less than 5.0.2195.5880 AND NOT Patch Q324380 installed AND NOT SP4 or later Installed AND Configuration section RDP Enabled
BACK