Oval Definition:	oval:org.mitre.oval:def:8344
Revision Date: 2010-03-22 Version: 42 Title: Windows Kernel Exception Handler Vulnerability Description: The kernel in Microsoft Windows NT 3.1 through Windows 7, including Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, and Windows Server 2008 Gold and SP2, when access to 16-bit applications is enabled on a 32-bit x86 platform, does not properly validate certain BIOS calls, which allows local users to gain privileges by crafting a VDM_TIB data structure in the Thread Environment Block (TEB), and then calling the NtVdmControl function to start the Windows Virtual DOS Machine (aka NTVDM) subsystem, leading to improperly handled exceptions involving the #GP trap handler (nt!KiTrap0D), aka "Windows Kernel Exception Handler Vulnerability." Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2010-0232 Platform(s): Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP Product(s): Definition Synopsis Vulnerable Microsoft Windows 2000 SP4 or later Microsoft Windows 2000 SP4 or later is installed AND the version of Ntoskrnl.exe is less than 5.0.2195.7364 OR Vulnerable Microsoft Windows XP (x86) SP2 Microsoft Windows XP (x86) SP2 is installed AND the version of Ntoskrnl.exe is less than 5.1.2600.3654 OR Vulnerable Microsoft Windows XP (x86) SP3 Microsoft Windows XP (x86) SP3 is installed AND the version of Ntoskrnl.exe is less than 5.1.2600.5913 OR Vulnerable Microsoft Windows Server 2003 x86 SP2 Microsoft Windows Server 2003 SP2 (x86) is installed AND the version of Ntoskrnl.exe is less than 5.2.3790.4637 OR Vulnerable Microsoft Windows Vista x86 - GDR Microsoft Windows Vista (32-bit) is installed AND the version of Ntoskrnl.exe is greater than or equal 6.0.6000.16000 AND the version of Ntoskrnl.exe is less than 6.0.6000.16973 OR Vulnerable Microsoft Windows Vista x86 - LDR Microsoft Windows Vista (32-bit) is installed AND the version of Ntoskrnl.exe is greater than or equal 6.0.6000.20000 AND the version of Ntoskrnl.exe is less than 6.0.6000.21175 OR Vulnerable Microsoft Windows Vista SP1 x86, Server 2008 32bit - GDR Microsoft Windows Vista (32-bit) Service Pack 1 is installed OR Microsoft Windows Server 2008 (32-bit) is installed AND the version of Ntoskrnl.exe is greater than or equal 6.0.6001.18000 AND the version of Ntoskrnl.exe is less than 6.0.6001.18377 OR Vulnerable Microsoft Windows Vista SP1 x86, Server 2008 32bit - LDR Microsoft Windows Vista (32-bit) Service Pack 1 is installed OR Microsoft Windows Server 2008 (32-bit) is installed AND the version of Ntoskrnl.exe is greater than or equal 6.0.6001.22000 AND the version of Ntoskrnl.exe is less than 6.0.6001.22577 OR Vulnerable Microsoft Windows Vista SP2 x86, Server 2008 SP2 32bit - GDR Microsoft Windows Vista (32-bit) Service Pack 2 is installed OR Microsoft Windows Server 2008 (32-bit) Service Pack 2 is installed AND the version of Ntoskrnl.exe is greater than or equal 6.0.6002.18000 AND the version of Ntoskrnl.exe is less than 6.0.6002.18160 OR Vulnerable Microsoft Windows Vista SP2 x86, Server 2008 SP2 32bit - LDR Microsoft Windows Vista (32-bit) Service Pack 2 is installed OR Microsoft Windows Server 2008 (32-bit) Service Pack 2 is installed AND the version of Ntoskrnl.exe is greater than or equal 6.0.6002.22000 AND the version of Ntoskrnl.exe is less than 6.0.6002.22283 OR Vulnerable Microsoft Windows 7 x86 - GDR Microsoft Windows 7 (32-bit) is installed AND the version of Ntoskrnl.exe is greater than or equal 6.1.7600.16000 AND the version of Ntoskrnl.exe is less than 6.1.7600.16481 OR Vulnerable Microsoft Windows 7 x86 - LDR Microsoft Windows 7 (32-bit) is installed AND the version of Ntoskrnl.exe is greater than or equal 6.1.7600.20000 AND the version of Ntoskrnl.exe is less than 6.1.7600.20591
BACK