Oval Definition:oval:org.mitre.oval:def:3941
Revision Date:2011-05-16Version:49
Title:Windows XP Font Buffer Overflow (SP2)
Description:Buffer overflow in the font processing component of Microsoft Windows 2000, Windows XP SP1 and SP2, and Windows Server 2003 allows local users to gain privileges via a specially-designed application.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2005-0060
Platform(s):Microsoft Windows XP
Product(s):Windows kernel
Definition Synopsis
  • Windows XP 32 bit Service Pack 2
  • Win2K/XP/2003/Vista/2008 service pack 2 is installed
  • AND Windows XP 32-bit edition is installed
  • Windows XP is installed
  • AND 32-Bit version of Windows is installed
  • AND Vulnerable file section
  • The version of Ntoskrnl.exe is less than 5.1.2600.2622
  • OR The version of Authz.dll is less than 5.1.2600.2622
  • OR The version of Ntkrnlpa.exe is less than 5.1.2600.2622
  • OR The version of user32.dll is less than 5.1.2600.2622
  • OR The version of Win32k.sys is less than 5.1.2600.2622
  • OR The version of Winsrv.dll is less than 5.1.2600.2622
  • OR The version of Ntkrnlmp.exe is less than 5.1.2600.2622
  • OR The version of Ntkrpamp.exe is less than 5.1.2600.2622
  • OR NOT the patch KB890859 is installed (Hotfix key)
    • BACK