Oval Definition:	oval:org.mitre.oval:def:929
Revision Date: 2007-08-02 Version: 15 Title: Windows NT IIS Out of Process Privilege Elevation Vulnerability Description: Unknown vulnerability in the hosting process (dllhost.exe) for Microsoft Internet Information Server (IIS) 4.0 through 5.1 allows remote attackers to gain privileges by executing an out of process application that acquires LocalSystem privileges, aka "Out of Process Privilege Elevation." Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2002-0869 Platform(s): Microsoft Windows NT Product(s): Microsoft Internet Information Server (IIS) Definition Synopsis IIS 4.0 Major Version AND IIS minor version equals 0 AND File %windir%\System32\w3svc.dll is less than 4.2.780.1 AND NOT Patch Q327696 Installed AND NOT Patch Q811114 Installed
BACK