Oval Definition:
oval:org.mitre.oval:def:22288
Revision Date
:
2014-02-24
Version
:
22
Title
:
Kernel NDProxy Vulnerability (CVE-2013-5065) - MS14-002
Description
:
NDProxy.sys in the kernel in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 allows local users to gain privileges via a crafted application, as exploited in the wild in November 2013.
Family
:
windows
Class
:
vulnerability
Status
:
ACCEPTED
Reference(s)
:
CVE-2013-5065
Platform(s)
:
Microsoft Windows Server 2003
Microsoft Windows XP
Product(s)
:
Definition Synopsis
XP (x86) and Vulnerable version
Microsoft Windows XP (x86) SP3 is installed
AND
Check if the version of NDProxy.sys is less than 5.1.2600.6484
OR
XP (x64) / Server 2003 and Version
XP (x64) / Server 2003 (x86)/(x64)/(ia64)
Microsoft Windows Server 2003 (ia64) SP2 is installed
OR
Microsoft Windows Server 2003 SP2 (x86) is installed
OR
Microsoft Windows Server 2003 SP2 (x64) is installed
OR
Microsoft Windows XP x64 Edition SP2 is installed
AND
Check if the version is less than 5.2.3790.5263
BACK