Oval Definition:	oval:org.mitre.oval:def:61
Revision Date: 2008-02-28 Version: 43 Title: Windows NT Remote Access Service Phonebook Buffer Overflow Description: Buffer overflow in Remote Access Service (RAS) phonebook for Windows NT 4.0, 2000, XP, and Routing and Remote Access Server (RRAS) allows local users to execute arbitrary code by modifying the rasphone.pbk file to use a long dial-up entry. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2002-0366 Platform(s): Microsoft Windows NT Product(s): Remote Access Service (RAS) Definition Synopsis Software section Microsoft Windows NT is installed AND NOT this is an NT Terminal Server AND RAS Phonebook AND File %windir%\system32\rasapi32.dll version is less than 4.0.1381.7140 AND NOT Patch Q318138 Installed AND Configuration section RAS Enabled
BACK