Quantcast

Updated vulnerability definitons (ref MS11-100)

classic Classic list List threaded Threaded
2 messages Options
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Updated vulnerability definitons (ref MS11-100)

Dragos Prisaca-3

Hi,

 

I’ve updated the LDR criteria for the following definitions to prevent some false positives:

oval:org.mitre.oval:def:14363

oval:org.mitre.oval:def:14815

oval:org.mitre.oval:def:14588

oval:org.mitre.oval:def:14625

 

Change log:

                Replaced: oval:org.mitre.oval:tst:42229 (the version of System.Web.dll is greater than or equal to 2.0.50727.5000)

                With: oval:com.symantec.dev.oval:tst:13320 (the version of System.Web.dll is greater than or equal to 2.0.50727.5600)

 

                Replaced: oval:org.mitre.oval:tst:42377 (the version of System.Web.Extensions.dll is greater than or equal to 3.5.30729.5000)

                With: oval:com.symantec.dev.oval:tst:13321 (the version of System.Web.Extensions.dll is greater than or equal to 3.5.30729.5600)

 

 

Regards,

_Dragos

 

 

Dragos Prisaca
Princ. Software Engineer
Symantec Corporation 
www.symantec.com
                                                           

[hidden email]
                                                           

wordlogo

                                                                               

sig_green_bug

 

This message (including any attachments) is intended only for the use of the individual or entity to which it is addressed and may contain information that is non-public, proprietary, privileged, confidential, and exempt from disclosure under applicable law or may constitute as attorney work product. If you are not the intended recipient, you are hereby notified that any use, dissemination, distribution, or copying of this communication is strictly prohibited. If you have received this communication in error, notify us immediately by telephone and (i) destroy this message if a facsimile or (ii) delete this message immediately if this is an electronic communication.

 

 

To unsubscribe, send an email message to [hidden email] with SIGNOFF OVAL-DISCUSSION-LIST in the BODY of the message. If you have difficulties, write to [hidden email].

oval-def-MS11-100-updated.xml (263K) Download Attachment
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Re: Updated vulnerability definitons (ref MS11-100)

Hansbury, Matt
Hi Dragos,

This submission has been processed, and the content is now available for further review.  

Note:  I did have to manually adjust the updated Definitions slightly, since they had gone from INTERIM to ACCEPTED.  I have attached the updated submission.

Thanks
Matt

-----Original Message-----
From: Dragos Prisaca [mailto:[hidden email]]
Sent: Saturday, February 11, 2012 3:33 PM
To: oval-discussion-list OVAL Discussion List/Closed Public Discussi
Subject: [OVAL-DISCUSSION-LIST] Updated vulnerability definitons (ref MS11-100)

Hi,

 

I've updated the LDR criteria for the following definitions to prevent some false positives:

oval:org.mitre.oval:def:14363

oval:org.mitre.oval:def:14815

oval:org.mitre.oval:def:14588

oval:org.mitre.oval:def:14625

 

Change log:

                Replaced: oval:org.mitre.oval:tst:42229 (the version of System.Web.dll is greater than or equal to 2.0.50727.5000)

                With: oval:com.symantec.dev.oval:tst:13320 (the version of System.Web.dll is greater than or equal to 2.0.50727.5600)

 

                Replaced: oval:org.mitre.oval:tst:42377 (the version of System.Web.Extensions.dll is greater than or equal to 3.5.30729.5000)

                With: oval:com.symantec.dev.oval:tst:13321 (the version of System.Web.Extensions.dll is greater than or equal to 3.5.30729.5600)

 

 

Regards,

_Dragos

 

 

Dragos Prisaca
Princ. Software Engineer
Symantec Corporation
www.symantec.com <http://www.symantec.com/>
                                                           

[hidden email] <mailto:[hidden email]>
                                                           

wordlogo

                                                                               

sig_green_bug

 

This message (including any attachments) is intended only for the use of the individual or entity to which it is addressed and may contain information that is non-public, proprietary, privileged, confidential, and exempt from disclosure under applicable law or may constitute as attorney work product. If you are not the intended recipient, you are hereby notified that any use, dissemination, distribution, or copying of this communication is strictly prohibited. If you have received this communication in error, notify us immediately by telephone and (i) destroy this message if a facsimile or (ii) delete this message immediately if this is an electronic communication.

 

 

To unsubscribe, send an email message to [hidden email] with SIGNOFF OVAL-DISCUSSION-LIST in the BODY of the message. If you have difficulties, write to [hidden email].

To unsubscribe, send an email message to [hidden email] with
SIGNOFF OVAL-DISCUSSION-LIST
in the BODY of the message.  If you have difficulties, write to [hidden email].

oval-def-MS11-100-updated-alt.xml (264K) Download Attachment
Loading...