issue with oval:org.mitre.oval:def:2274

classic Classic list List threaded Threaded
2 messages Options
Reply | Threaded
Open this post in threaded view
|

issue with oval:org.mitre.oval:def:2274

Jeremy Lam-2
Hi all,

Seems like there's a problem with this definition that's checking for a
vulnerability in Windows Messenger 5, but shows vulnerabilities in
computers that don't have Messenger 5 installed.

      <criteria comment="Software section" operator="AND">
        <criterion comment="Windows Messenger 5.1 is installed"
negate="true" test_ref="oval:org.mitre.oval:tst:564"/>
        <criterion comment="the version of msmsgs.exe is less than
5.1.0.639" negate="false" test_ref="oval:org.mitre.oval:tst:563"/>
      </criteria>

Instead of checking for the existence of version 5, the definition
checks for the non-existance of version 5.1?

--
Jeremy Lam
Product Engineer
BigFix, Inc.
[hidden email]

To unsubscribe, send an email message to [hidden email] with
SIGNOFF OVAL-DISCUSSION-LIST
in the BODY of the message.  If you have difficulties, write to [hidden email].

Reply | Threaded
Open this post in threaded view
|

Re: issue with oval:org.mitre.oval:def:2274

Matthew N. Wojcik
Hi Jeremy,

Thanks for reporting this.  I've entered it into our Repository content
tracker.  We'll look into it as soon as we can.

--Woj                  Matthew N. Wojcik                 [hidden email]
OVAL Moderator & OVAL Repository Editor          http://oval.mitre.org/


> -----Original Message-----
> From: Jeremy Lam [mailto:[hidden email]]
> Sent: Tuesday, March 06, 2007 6:09 PM
> To: oval-discussion-list OVAL Moderated Public Discussion List
> Subject: [OVAL-DISCUSSION-LIST] issue with
> oval:org.mitre.oval:def:2274
>
> Hi all,
>
> Seems like there's a problem with this definition that's
> checking for a
> vulnerability in Windows Messenger 5, but shows vulnerabilities in
> computers that don't have Messenger 5 installed.
>
>       <criteria comment="Software section" operator="AND">
>         <criterion comment="Windows Messenger 5.1 is installed"
> negate="true" test_ref="oval:org.mitre.oval:tst:564"/>
>         <criterion comment="the version of msmsgs.exe is less than
> 5.1.0.639" negate="false" test_ref="oval:org.mitre.oval:tst:563"/>
>       </criteria>
>
> Instead of checking for the existence of version 5, the definition
> checks for the non-existance of version 5.1?
>
> --
> Jeremy Lam
> Product Engineer
> BigFix, Inc.
> [hidden email]
>

To unsubscribe, send an email message to [hidden email] with
SIGNOFF OVAL-DISCUSSION-LIST
in the BODY of the message.  If you have difficulties, write to [hidden email].