Oval Definition:	oval:org.mitre.oval:def:681
Revision Date: 2008-03-24 Version: 48 Title: Flaw in Windows WM_TIMER Message Handling Could Enable Privilege Elevation Description: NetDDE Agent on Windows NT 4.0, 4.0 Terminal Server Edition, Windows 2000, and Windows XP allows local users to execute arbitrary code as LocalSystem via "shatter" style attack by sending a WM_COPYDATA message followed by a WM_TIMER message, as demonstrated by GetAd, aka "Flaw in Windows WM_TIMER Message Handling Could Enable Privilege Elevation." Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2002-1230 Platform(s): Microsoft Windows NT Product(s): NetDDE Agent Definition Synopsis Microsoft Windows NT is installed AND NOT this is an NT Terminal Server AND the version of user32.dll is less than 4.0.1381.7177 AND the version of gdi32.dll is less than 4.0.1381.7177 AND the version of winsrv.dll is less than 4.0.1381.7202 AND the version of win32k.sys is less than 4.0.1381.7207 AND NOT Patch Q328310 Installed
BACK