Oval Definition:	oval:org.mitre.oval:def:4584
Revision Date: 2008-02-04 Version: 21 Title: Vulnerability in Macrovision Driver Could Allow Local Elevation of Privilege Description: Buffer overflow in Macrovision SafeDisc secdrv.sys before 4.3.86.0, as shipped in Microsoft Windows XP SP2, XP Professional x64 and x64 SP2, Server 2003 SP1 and SP2, and Server 2003 x64 and x64 SP2 allows local users to overwrite arbitrary memory locations and gain privileges via a crafted argument to a METHOD_NEITHER IOCTL, as originally discovered in the wild. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2007-5587 Platform(s): Microsoft Windows Server 2003 Microsoft Windows XP Product(s): Macrovision Definition Synopsis XP/Server 2003 Microsoft Windows XP SP2 or later is installed OR S03,SP1 Microsoft Windows Server 2003 SP1 (x86) is installed AND NOT a version of Windows for the ia64 architecture is installed OR S03,SP2 Microsoft Windows Server 2003 SP2 (x86) is installed AND NOT a version of Windows for the ia64 architecture is installed AND secdrv.sys version is less than 4.3.86.0
BACK