Oval Definition:	oval:org.mitre.oval:def:983
Revision Date: 2007-08-02 Version: 15 Title: Windows XP IIS Out of Process Privilege Elevation Vulnerability Description: Unknown vulnerability in the hosting process (dllhost.exe) for Microsoft Internet Information Server (IIS) 4.0 through 5.1 allows remote attackers to gain privileges by executing an out of process application that acquires LocalSystem privileges, aka "Out of Process Privilege Elevation." Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2002-0869 Platform(s): Microsoft Windows XP Product(s): Microsoft Internet Information Server (IIS) Definition Synopsis IIS major version equals 5 AND IIS 5.1 Minor Version AND File %windir%\System32\w3svc.dll is less than 5.1.2600.1125 AND NOT Patch Q327696 Installed AND NOT Patch Q811114 Installed
BACK