Oval Definition:
oval:org.mitre.oval:def:747
Revision Date
:
2011-05-09
Version
:
44
Title
:
Winsock Hostname Vulnerability
Description
:
Buffer overflow in the Winsock API in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allows remote attackers to execute arbitrary code via unknown vectors, aka "Winsock Hostname Vulnerability."
Family
:
windows
Class
:
vulnerability
Status
:
ACCEPTED
Reference(s)
:
CVE-2006-3440
Platform(s)
:
Microsoft Windows 2000
Microsoft Windows Server 2003
Microsoft Windows XP
Product(s)
:
Definition Synopsis
Win2K,SP4
Microsoft Windows 2000 SP4 or later is installed
AND
The version of dnsapi.dll is less than 5.0.2195.7100.
OR
WinXP,SP1
Microsoft Windows XP SP1 (32-bit) is installed
AND
The version of dnsapi.dll is less than 5.1.2600.1863.
OR
WinXP,SP2
Microsoft Windows XP SP2 or later is installed
AND
The version of dnsapi.dll is less than 5.1.2600.2938.
OR
WinXP,SP1 (64-bit)
Microsoft Windows XP SP1 (64-bit) is installed
AND
The version of dnsapi.dll is less than 5.2.3790.2745.
OR
S03-Gold
Microsoft Windows Server 2003 (x86) Gold is installed
AND
The version of dnsapi.dll is less than 5.2.3790.558.
OR
S03,SP1
Microsoft Windows Server 2003 SP1 (x86) is installed
AND
The version of dnsapi.dll is less than 5.2.3790.2745.
BACK