Oval Definition:oval:org.mitre.oval:def:6374
Revision Date:2009-10-19Version:21
Title:TCP/IP Timestamps Code Execution Vulnerability
Description:The TCP/IP implementation in Microsoft Windows Vista Gold, SP1, and SP2 and Server 2008 Gold and SP2 does not properly manage state information, which allows remote attackers to execute arbitrary code by sending packets to a listening service, and thereby triggering misinterpretation of an unspecified field as a function pointer, aka "TCP/IP Timestamps Code Execution Vulnerability."
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2009-1925
Platform(s):Microsoft Windows Server 2008
Microsoft Windows Vista
Product(s):
Definition Synopsis
  • Windows Vista x86/x64
  • OS section
  • Microsoft Windows Vista (32-bit) is installed
  • OR Microsoft Windows Vista x64 Edition is installed
  • AND The version of Tcpip.sys is less than 6.0.6000.16908
  • AND the version of Tcpip.sys is greater than or equal 6.0.6000.16000
  • OR Windows Vista x86/x64 SP1, Windows Server 2008 x86/x64/ia64
  • OS section
  • Microsoft Windows Vista (32-bit) Service Pack 1 is installed
  • OR Microsoft Windows Vista x64 Edition Service Pack 1 is installed
  • OR Microsoft Windows Server 2008 (32-bit) is installed
  • OR Microsoft Windows Server 2008 (64-bit) is installed
  • OR Microsoft Windows Server 2008 (ia-64) is installed
  • AND The version of Tcpip.sys is less than 6.0.6001.18311
  • AND the version of Tcpip.sys is greater than or equal 6.0.6001.18000
  • OR Windows Vista x86/x64 SP2, Windows Server 2008 x86/x64/ia64 SP2
  • OS section
  • Microsoft Windows Vista (32-bit) Service Pack 2 is installed
  • OR Microsoft Windows Vista x64 Edition Service Pack 2 is installed
  • OR Microsoft Windows Server 2008 (32-bit) Service Pack 2 is installed
  • OR Microsoft Windows Server 2008 x64 Edition Service Pack 2 is installed
  • OR Microsoft Windows Server 2008 Itanium-Based Edition Service Pack 2 is installed
  • AND The version of Tcpip.sys is less than 6.0.6002.18091
  • AND the version of Tcpip.sys is greater than or equal 6.0.6002.18000
  • OR Windows Vista x86/x64
  • OS section
  • Microsoft Windows Vista (32-bit) is installed
  • OR Microsoft Windows Vista x64 Edition is installed
  • AND The version of Tcpip.sys is less than 6.0.6000.21108
  • AND the version of Tcpip.sys is greater than or equal 6.0.6000.20000
  • OR Windows Vista x86/x64 SP1, Windows Server 2008 x86/x64/ia64
  • OS section
  • Microsoft Windows Vista (32-bit) Service Pack 1 is installed
  • OR Microsoft Windows Vista x64 Edition Service Pack 1 is installed
  • OR Microsoft Windows Server 2008 (32-bit) is installed
  • OR Microsoft Windows Server 2008 (64-bit) is installed
  • OR Microsoft Windows Server 2008 (ia-64) is installed
  • AND The version of Tcpip.sys is less than 6.0.6001.22497
  • AND the version of Tcpip.sys is greater than or equal 6.0.6001.22000
  • OR Windows Vista x86/x64 SP2, Windows Server 2008 x86/x64/ia64 SP2
  • OS section
  • Microsoft Windows Vista (32-bit) Service Pack 2 is installed
  • OR Microsoft Windows Vista x64 Edition Service Pack 2 is installed
  • OR Microsoft Windows Server 2008 (32-bit) Service Pack 2 is installed
  • OR Microsoft Windows Server 2008 x64 Edition Service Pack 2 is installed
  • OR Microsoft Windows Server 2008 Itanium-Based Edition Service Pack 2 is installed
  • AND The version of Tcpip.sys is less than 6.0.6002.22200
  • AND the version of Tcpip.sys is greater than or equal 6.0.6002.22000
    • BACK