Oval Definition:	oval:org.mitre.oval:def:319
Revision Date: 2008-03-24 Version: 44 Title: Windows NT getCanonicalPath Heap Corruption Denial of Service Description: The getCanonicalPath function in Windows NT 4.0 may free memory that it does not own and cause heap corruption, which allows attackers to cause a denial of service (crash) via requests that cause a long file name to be passed to getCanonicalPath, as demonstrated on the IBM JVM using a long string to the java.io.getCanonicalPath Java method. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2003-0525 Platform(s): Microsoft Windows NT Product(s): Windows NT 4.0 Definition Synopsis Microsoft Windows NT is installed AND NOT this is an NT Workstation AND NOT this is an NT Terminal Server AND the version of kernel32.dll is less than 4.0.1381.7224 AND NOT Patch Q823803 Installed
BACK