Fixes for def:28731 (CVE-2015-0061)

classic Classic list List threaded Threaded
2 messages Options
Reply | Threaded
Open this post in threaded view
|

Fixes for def:28731 (CVE-2015-0061)

Evgeniy Pavlov
Hi,
Our customer found that definition oval:org.mitre.oval:def:28731 works incorrectly.
The customer used Windows 7 x86 and Windows Server 2008 R2 x64. After installing KB3029944, definition 28731 still returned 'true'. His operating systems had Windowscodecs.dll file version of 6.1.7601.18716.
So I fixed definition def:28731 and made two separate checks:
- one check works if Windowscodecs.dll version is greater than 6.2;
- second check works if Windowscodecs.dll version is less than 6.2;


-------
Evgeniy Pavlov,
SCAP-developer
Phone: +7(495)543-31-01 ext. 20
http://www.altex-soft.com/

To unsubscribe, send an email message to [hidden email] with SIGNOFF OVAL-DISCUSSION-LIST in the BODY of the message. If you have difficulties, write to [hidden email].

3029944_vuln_mitre_2.xml (127K) Download Attachment
Evgeniy Pavlov ALTEX-SOFT
Reply | Threaded
Open this post in threaded view
|

Re: Fixes for def:28731 (CVE-2015-0061)

mcokus

Hi Evgeniy,

 

Thank you for your submission.  It has been processed and is in the oval repository.  The static download page will be updated shortly.

 

--mike

 

Mike Cokus

Systems Engineer

The MITRE Corporation

+1.757.896.8553

+1.757.826.8316 (fax)

[hidden email]

 

From: Evgeniy Pavlov [mailto:[hidden email]]
Sent: Monday, April 13, 2015 6:09 AM
To: oval-discussion-list OVAL Discussion List/Closed Public Discussi
Subject: [OVAL-DISCUSSION-LIST] Fixes for def:28731 (CVE-2015-0061)

 

Hi,

Our customer found that definition oval:org.mitre.oval:def:28731 works incorrectly.

The customer used Windows 7 x86 and Windows Server 2008 R2 x64. After installing KB3029944, definition 28731 still returned 'true'. His operating systems had Windowscodecs.dll file version of 6.1.7601.18716.

So I fixed definition def:28731 and made two separate checks:

- one check works if Windowscodecs.dll version is greater than 6.2;

- second check works if Windowscodecs.dll version is less than 6.2;

 

-------
Evgeniy Pavlov,
SCAP-developer
Phone: +7(495)543-31-01 ext. 20

 

To unsubscribe, send an email message to [hidden email] with SIGNOFF OVAL-DISCUSSION-LIST in the BODY of the message. If you have difficulties, write to [hidden email].