Oval Definition:
oval:org.mitre.oval:def:886
Revision Date
:
2015-08-10
Version
:
51
Title
:
Windows XP SSL Library Denial of Service
Description
:
The Microsoft Secure Sockets Layer (SSL) library, as used in Windows 2000, Windows XP, and Windows Server 2003, allows remote attackers to cause a denial of service via malformed SSL messages.
Family
:
windows
Class
:
vulnerability
Status
:
ACCEPTED
Reference(s)
:
CVE-2004-0120
Platform(s)
:
Microsoft Windows XP
Product(s)
:
Definition Synopsis
a vulnerable version of schannel.dll exists depending on service pack level
no service pack is installed and schannel.dll is less than 5.1.2600.136
Microsoft Windows XP (32-bit) is installed
AND
NOT
Win2K/XP/2003 is patched
AND
the version of schannel.dll is less than 5.1.2600.136
OR
service pack 1 is installed and schannel.dll is less than 5.1.2600.1347
Microsoft Windows XP SP1 (32-bit) is installed
AND
the version of schannel.dll is less than 5.1.2600.1347
AND
NOT
the patch kb835732 is installed
AND
SSL is enabled
BACK