Oval Definition:	oval:org.mitre.oval:def:29388
Revision Date: 2015-12-22 Version: 44 Title: Win32k information disclosure vulnerability - CVE-2015-2381 (MS15-073) Description: win32k.sys in the kernel-mode drivers in Microsoft Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to obtain sensitive information from kernel memory via a crafted application, aka "Win32k Information Disclosure Vulnerability," a different vulnerability than CVE-2015-2382. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2015-2381 Platform(s): Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Product(s): Definition Synopsis Win 8/2k12 and vulnerable file version Win 8 / 2k12 Microsoft Windows 8 (x86) is installed OR Microsoft Windows 8 (x64) is installed OR Microsoft Windows Server 2012 (64-bit) is installed AND gdr/ldr Check if the version of win32k.sys is less than 6.2.9200.17419 OR Check for LDR Check if the version of Win32k.sys is greater than or equal to 6.2.9200.21000 AND Check if the version of win32k.sys is less than 6.2.9200.21528 OR Win 8.1 / 2K12 R2and vulnerable file version Win 8.1 / 2k12 R2 Microsoft Windows 8.1 (x86) is installed OR Microsoft Windows 8.1 (x64) is installed OR Microsoft Windows Server 2012 R2 is installed AND Check if the version of win32k.sys is less than 6.3.9600.17915
BACK