Oval Definition:oval:org.mitre.oval:def:6166
Revision Date:2011-11-14Version:19
Title:Virtual PC and Virtual Server Privileged Instruction Decoding Vulnerability
Description:The Virtual Machine Monitor (VMM) in Microsoft Virtual PC 2004 SP1, 2007, and 2007 SP1, and Microsoft Virtual Server 2005 R2 SP1, does not enforce CPU privilege-level requirements for all machine instructions, which allows guest OS users to execute arbitrary kernel-mode code and gain privileges within the guest OS via a crafted application, aka "Virtual PC and Virtual Server Privileged Instruction Decoding Vulnerability."
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2009-1542
Platform(s):Microsoft Windows 2000
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows XP
Product(s):Microsoft Virtual PC 2004
Microsoft Virtual PC 2007
Microsoft Virtual Server 2005
Definition Synopsis
  • Microsoft Virtual PC 2004 SP1
  • Microsoft Virtual PC 2004 Service Pack 1 is installed
  • AND The version of VMM.sys is less than 1.1.465.15
  • Microsoft Virtual PC 2007
  • Microsoft Virtual PC 2007 is installed
  • AND The version of VMM.sys is less than 1.1.598.0
  • Microsoft Virtual PC 2007 SP1
  • Microsoft Virtual PC 2007 Service Pack 1 is installed
  • AND The version of VMM.sys is less than 1.1.656.0
  • Microsoft Virtual Server 2005 R2 Enterprise
  • Microsoft Virtual Server 2005 R2 is installed
  • AND The version of VMM.sys is less than 1.1.656.0
  • OR Microsoft Virtual Server 2005
  • Check Microsoft Virtual Server 2005 Standard or Enterprise
  • Microsoft Virtual Server 2005 Enterprise is installed
  • OR Microsoft Virtual Server 2005 Standard is installed
  • AND The version of VMM.sys is less than 1.1.465.16
    • BACK