Oval Definition:oval:org.mitre.oval:def:747
Revision Date:2011-05-09Version:44
Title:Winsock Hostname Vulnerability
Description:Buffer overflow in the Winsock API in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allows remote attackers to execute arbitrary code via unknown vectors, aka "Winsock Hostname Vulnerability."
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2006-3440
Platform(s):Microsoft Windows 2000
Microsoft Windows Server 2003
Microsoft Windows XP
Product(s):
Definition Synopsis
  • Win2K,SP4
  • Microsoft Windows 2000 SP4 or later is installed
  • AND The version of dnsapi.dll is less than 5.0.2195.7100.
  • OR WinXP,SP1
  • Microsoft Windows XP SP1 (32-bit) is installed
  • AND The version of dnsapi.dll is less than 5.1.2600.1863.
  • OR WinXP,SP2
  • Microsoft Windows XP SP2 or later is installed
  • AND The version of dnsapi.dll is less than 5.1.2600.2938.
  • OR WinXP,SP1 (64-bit)
  • Microsoft Windows XP SP1 (64-bit) is installed
  • AND The version of dnsapi.dll is less than 5.2.3790.2745.
  • OR S03-Gold
  • Microsoft Windows Server 2003 (x86) Gold is installed
  • AND The version of dnsapi.dll is less than 5.2.3790.558.
  • OR S03,SP1
  • Microsoft Windows Server 2003 SP1 (x86) is installed
  • AND The version of dnsapi.dll is less than 5.2.3790.2745.
  • BACK