Oval Definition:	oval:org.mitre.oval:def:29128
Revision Date: 2015-12-22 Version: 44 Title: Win32k elevation of privilege vulnerability - CVE-2015-2366 (MS15-073) Description: win32k.sys in the kernel-mode drivers in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege Vulnerability." Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2015-2366 Platform(s): Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Product(s): Definition Synopsis Win 7 / R2 + vulnerable file version Win 7 / R2 Microsoft Windows 7 (32-bit) is installed OR Microsoft Windows 7 x64 Edition is installed OR Microsoft Windows Server 2008 R2 x64 Edition is installed OR Microsoft Windows Server 2008 R2 Itanium-Based Edition is installed AND gdr/ldr Check if the version of win32k.sys is less than 6.1.7601.18906 OR Check for LDR Check if the version of Win32k.sys is greater than or equal to 6.1.7601.22000 AND Check if the version of win32k.sys is less than 6.1.7601.23109 OR Win 8/2k12 and vulnerable file version Win 8 / 2k12 Microsoft Windows 8 (x86) is installed OR Microsoft Windows 8 (x64) is installed OR Microsoft Windows Server 2012 (64-bit) is installed AND gdr/ldr Check if the version of win32k.sys is less than 6.2.9200.17419 OR Check for LDR Check if the version of Win32k.sys is greater than or equal to 6.2.9200.21000 AND Check if the version of win32k.sys is less than 6.2.9200.21528 OR Win 8.1 / 2K12 R2and vulnerable file version Win 8.1 / 2k12 R2 Microsoft Windows 8.1 (x86) is installed OR Microsoft Windows 8.1 (x64) is installed OR Microsoft Windows Server 2012 R2 is installed AND Check if the version of win32k.sys is less than 6.3.9600.17915
BACK