Oval Definition:oval:org.mitre.oval:def:886
Revision Date:2015-08-10Version:51
Title:Windows XP SSL Library Denial of Service
Description:The Microsoft Secure Sockets Layer (SSL) library, as used in Windows 2000, Windows XP, and Windows Server 2003, allows remote attackers to cause a denial of service via malformed SSL messages.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2004-0120
Platform(s):Microsoft Windows XP
Product(s):
Definition Synopsis
  • a vulnerable version of schannel.dll exists depending on service pack level
  • no service pack is installed and schannel.dll is less than 5.1.2600.136
  • Microsoft Windows XP (32-bit) is installed
  • AND NOT Win2K/XP/2003 is patched
  • AND the version of schannel.dll is less than 5.1.2600.136
  • OR service pack 1 is installed and schannel.dll is less than 5.1.2600.1347
  • Microsoft Windows XP SP1 (32-bit) is installed
  • AND the version of schannel.dll is less than 5.1.2600.1347
  • AND NOT the patch kb835732 is installed
  • AND SSL is enabled
    • BACK