More comments from OVAL Board member Bill Wall of Harris (thanks again,
Bill!), which are worth sharing with the entire Community Forum.
Thanks,
Tiffany
Microsoft Technical Lead, MITRE's OVAL Team
-------- Original Message --------
Subject: RE: [OVAL-DISCUSSION-LIST] OVAL queries for Microsoft
vulnerabilities
Date: Wed, 26 Mar 2003 09:50:08 -0500
From: "Wall, William (wwall)" <
wwall@...>
To: "'
tab@...'" <
tab@...>
Tiffany,
One other comment on the CSD version.
In hklm\software\microsoft\windows nt\current version\csdversion the
value is a
string (REG_SZ) and
has always been spelled out as Service Pack x where x is the service
pack
number.
In hklm\system\currentcontrolset\control\windows\csdversion, the value
is a
REG_DWORD and the
value can be stored in binary, decimal, or hex. So my machine with
service pack
2 is observed
as REG_DWORD value of 0x200, which is the hex value of 512. So you have
to make
sure you are
measuring the right radix as well.
Bill
