Oval Definition:oval:org.mitre.oval:def:6286
Revision Date:2011-10-03Version:45
Title:Workstation Service Memory Corruption Vulnerability
Description:Double free vulnerability in the Workstation service in Microsoft Windows allows remote authenticated users to gain privileges via a crafted RPC message to a Windows XP SP2 or SP3 or Server 2003 SP2 system, or cause a denial of service via a crafted RPC message to a Vista Gold, SP1, or SP2 or Server 2008 Gold or SP2 system, aka "Workstation Service Memory Corruption Vulnerability."
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2009-1544
Platform(s):Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows XP
Product(s):
Definition Synopsis
  • Windows XP SP2
  • Microsoft Windows XP (x86) SP2 is installed
  • AND the version of wkssvc.dll is less than 5.1.2600.3584
  • OR Windows XP SP3
  • Microsoft Windows XP (x86) SP3 is installed
  • AND the version of wkssvc.dll is less than 5.1.2600.5826
  • OR Windows XP SP2/Server 2003 SP2
  • OS section
  • Microsoft Windows XP x64 Edition SP2 is installed
  • OR Microsoft Windows Server 2003 SP2 (x86) is installed
  • OR Microsoft Windows Server 2003 SP2 (x64) is installed
  • OR Microsoft Windows Server 2003 (ia64) SP2 is installed
  • AND the version of wkssvc.dll is less than 5.2.3790.4530
  • OR Windows Vista
  • Windows Vista
  • Microsoft Windows Vista (32-bit) is installed
  • OR Microsoft Windows Vista x64 Edition is installed
  • AND the version of wkssvc.dll is less than 6.0.6000.16868
  • AND the version of wkssvc.dll is greater than or equal 6.0.6000.16000
  • OR Windows Vista
  • Windows Vista
  • Microsoft Windows Vista (32-bit) is installed
  • OR Microsoft Windows Vista x64 Edition is installed
  • AND the version of wkssvc.dll is less than 6.0.6000.21065
  • AND the version of wkssvc.dll is greater than or equal 6.0.6000.20000
  • OR Windows Vista SP1/Server 2008
  • OS section
  • Microsoft Windows Vista (32-bit) Service Pack 1 is installed
  • OR Microsoft Windows Vista x64 Edition Service Pack 1 is installed
  • OR Microsoft Windows Server 2008 (32-bit) is installed
  • OR Microsoft Windows Server 2008 (64-bit) is installed
  • OR Microsoft Windows Server 2008 (ia-64) is installed
  • AND the version of wkssvc.dll is less than 6.0.6001.18270
  • AND the version of wkssvc.dll is greater than or equal 6.0.6001.18000
  • OR Windows Vista SP1/Server 2008
  • OS section
  • Microsoft Windows Vista (32-bit) Service Pack 1 is installed
  • OR Microsoft Windows Vista x64 Edition Service Pack 1 is installed
  • OR Microsoft Windows Server 2008 (32-bit) is installed
  • OR Microsoft Windows Server 2008 (64-bit) is installed
  • OR Microsoft Windows Server 2008 (ia-64) is installed
  • AND the version of wkssvc.dll is less than 6.0.6001.22447
  • AND the version of wkssvc.dll is greater than or equal 6.0.6001.22000
  • OR Windows Vista SP2/Server 2008 SP2
  • OS section
  • Microsoft Windows Vista (32-bit) Service Pack 2 is installed
  • OR Microsoft Windows Vista x64 Edition Service Pack 2 is installed
  • OR Microsoft Windows Server 2008 (32-bit) Service Pack 2 is installed
  • OR Microsoft Windows Server 2008 x64 Edition Service Pack 2 is installed
  • OR Microsoft Windows Server 2008 Itanium-Based Edition Service Pack 2 is installed
  • AND the version of wkssvc.dll is less than 6.0.6002.18049
  • AND the version of wkssvc.dll is greater than or equal 6.0.6002.18000
  • OR Windows Vista SP2/Server 2008 SP2
  • OS section
  • Microsoft Windows Vista (32-bit) Service Pack 2 is installed
  • OR Microsoft Windows Vista x64 Edition Service Pack 2 is installed
  • OR Microsoft Windows Server 2008 (32-bit) Service Pack 2 is installed
  • OR Microsoft Windows Server 2008 x64 Edition Service Pack 2 is installed
  • OR Microsoft Windows Server 2008 Itanium-Based Edition Service Pack 2 is installed
  • AND the version of wkssvc.dll is less than 6.0.6002.22150
  • AND the version of wkssvc.dll is greater than or equal 6.0.6002.22000
    • BACK