Oval for IE
|
|
Chandan-2
|
New Oval Definitions on Internet Explorer.
Thanks!! Chandan www.secpod.com To unsubscribe, send an email message to [hidden email] with SIGNOFF OVAL-DISCUSSION-LIST in the BODY of the message. If you have difficulties, write to [hidden email]. <?xml version="1.0" encoding="UTF-8"?> <oval_definitions xsi:schemaLocation="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows windows-definitions-schema.xsd http://oval.mitre.org/XMLSchema/oval-definitions-5#independent independent-definitions-schema.xsd http://oval.mitre.org/XMLSchema/oval-definitions-5 oval-definitions-schema.xsd http://oval.mitre.org/XMLSchema/oval-common-5 oval-common-schema.xsd" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:oval="http://oval.mitre.org/XMLSchema/oval-common-5" xmlns:oval-def="http://oval.mitre.org/XMLSchema/oval-definitions-5"> <generator> <oval:product_name>The OVAL Repository</oval:product_name> <oval:schema_version>5.6</oval:schema_version> <oval:timestamp>2009-09-23T08:53:57.981-04:00</oval:timestamp> </generator> <definitions> <definition id="oval:org.secpod.oval:def:91001" version="1" class="vulnerability"> <metadata> <title>Microsoft Internet Explorer 7 printing DoS attack vulnerability</title> <affected family="windows"> <platform>Microsoft Windows XP</platform> <platform>Microsoft Windows Server 2003</platform> <platform>Microsoft Windows Vista</platform> <product>Internet Explorer is installed on the system.</product> </affected> <reference source="CVE" ref_id="CVE-2009-3270" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3270"/> <description>Microsoft Internet Explorer 7 through 7.0.6000.16711 allows remote attackers to cause a denial of service (unusable browser) by calling the window.print function in a loop, aka a "printing DoS attack," possibly a related issue to CVE-2009-0821.</description> <oval_repository> <dates> <submitted date="2009-09-23T15:11:12"> <contributor organization="SecPod Technologies">Prabhu.S.A</contributor> </submitted> </dates> <status>INITIAL SUBMISSION</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND"> <criteria operator="OR"> <extend_definition comment="Microsoft Windows XP (x86) SP2 is installed" definition_ref="oval:org.mitre.oval:def:754"/> <extend_definition comment="Microsoft Windows XP (x86) SP3 is installed" definition_ref="oval:org.mitre.oval:def:5631"/> <extend_definition comment="Microsoft Windows Vista (32-bit) is installed" definition_ref="oval:org.mitre.oval:def:1282"/> <extend_definition comment="Microsoft Windows Vista (32-bit) Service Pack 1 is installed" definition_ref="oval:org.mitre.oval:def:4873"/> <extend_definition comment="Microsoft Windows Server 2003 SP1 (x86) is installed" definition_ref="oval:org.mitre.oval:def:565"/> <extend_definition comment="Microsoft Windows Server 2003 SP2 (x86) is installed" definition_ref="oval:org.mitre.oval:def:1935"/> </criteria> <criterion comment="Check for Internet Explorer less than or equal to 7.0.6000.16711" test_ref="oval:org.secpod.oval:tst:91001"/> <criterion comment="Check the Internet Explorer version greater than or equal to 7" test_ref="oval:org.secpod.oval:tst:91002"/> </criteria> </criteria> </definition> <definition id="oval:org.secpod.oval:def:91002" version="1" class="vulnerability"> <metadata> <title>Microsoft Internet Explorer 6 and Internet Explorer 7 KEYGEN element vulnerability</title> <affected family="windows"> <platform>Microsoft Windows 2000</platform> <platform>Microsoft Windows XP</platform> <platform>Microsoft Windows Server 2003</platform> <platform>Microsoft Windows Vista</platform> <product>Internet Explorer is installed on the system.</product> </affected> <reference source="CVE" ref_id="CVE-2009-3267" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3267"/> <description>Microsoft Internet Explorer 6 through 6.0.2900.2180, and 7.0.6000.16711, allows remote attackers to cause a denial of service (CPU consumption) via an automatically submitted form containing a KEYGEN element, a related issue to CVE-2009-1828.</description> <oval_repository> <dates> <submitted date="2009-09-23T15:11:12"> <contributor organization="SecPod Technologies">Prabhu.S.A</contributor> </submitted> </dates> <status>INITIAL SUBMISSION</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND"> <criteria operator="OR"> <extend_definition comment="Microsoft Windows XP (x86) SP2 is installed" definition_ref="oval:org.mitre.oval:def:754"/> <extend_definition comment="Microsoft Windows XP (x86) SP3 is installed" definition_ref="oval:org.mitre.oval:def:5631"/> <extend_definition comment="Microsoft Windows Vista (32-bit) is installed" definition_ref="oval:org.mitre.oval:def:1282"/> <extend_definition comment="Microsoft Windows Vista (32-bit) Service Pack 1 is installed" definition_ref="oval:org.mitre.oval:def:4873"/> <extend_definition comment="Microsoft Windows Server 2003 SP1 (x86) is installed" definition_ref="oval:org.mitre.oval:def:565"/> <extend_definition comment="Microsoft Windows Server 2003 SP2 (x86) is installed" definition_ref="oval:org.mitre.oval:def:1935"/> <extend_definition comment="Microsoft Windows 2000 is installed" definition_ref="oval:org.mitre.oval:def:85"/> </criteria> <criteria operator="OR"> <criteria operator="AND"> <criterion comment="Check for Internet Explorer less than or equal to 7.0.6000.16711" test_ref="oval:org.secpod.oval:tst:91001"/> <criterion comment="Check for Internet Explorer version greater than or equal to 7" test_ref="oval:org.secpod.oval:tst:91002"/> </criteria> <criteria operator="AND"> <criterion comment="Check for Internet Explorer less than or equal to 6.0.2900.2180" test_ref="oval:org.secpod.oval:tst:91003"/> <criterion comment="Check for Internet Explorer version greater than or equal to 6" test_ref="oval:org.secpod.oval:tst:91004"/> </criteria> </criteria> </criteria> </criteria> </definition> <definition id="oval:org.mitre.oval:def:754" version="3" class="inventory"> <metadata> <title>Microsoft Windows XP (x86) SP2 is installed</title> <affected family="windows"> <platform>Microsoft Windows XP</platform> </affected> <reference source="CPE" ref_id="cpe:/o:microsoft:windows_xp::sp2:x86"/> <description>A version of Microsoft Windows XP (x86) Service Pack 2 is installed.</description> <oval_repository> <dates> <submitted date="2007-03-05T09:00:00"> <contributor organization="The MITRE Corporation">Andrew Buttner</contributor> </submitted> <status_change date="2007-03-05T09:00:00">DRAFT</status_change> <status_change date="2007-03-21T16:17:26.869-04:00">INTERIM</status_change> <status_change date="2007-04-10T13:44:28.583-04:00">ACCEPTED</status_change> <modified comment="Changed the CPE reference" date="2008-04-04T11:17:00.434-04:00"> <contributor organization="The MITRE Corporation">Andrew Buttner</contributor> </modified> <status_change date="2008-04-04T11:29:22.458-04:00">INTERIM</status_change> <status_change date="2008-04-21T04:00:24.359-04:00">ACCEPTED</status_change> <modified comment="Updated comment to include Vista and Server 2008" date="2009-05-07T10:32:00.713-04:00"> <contributor organization="Gideon Technologies, Inc.">Dragos Prisaca</contributor> </modified> <status_change date="2009-05-07T10:34:02.214-04:00">INTERIM</status_change> <modified comment="Modified platform to Microsoft Windows Server 2003" date="2009-05-25T10:32:00.713-04:00"> <contributor organization="The MITRE Corporation">Brendan Miles</contributor> </modified> <status_change date="2009-06-22T04:00:33.535-04:00">ACCEPTED</status_change> </dates> <status>ACCEPTED</status> </oval_repository> </metadata> <criteria operator="AND"> <criterion comment="the installed operating system is part of the Microsoft Windows family" test_ref="oval:org.mitre.oval:tst:99"/> <criterion comment="a version of Microsoft Windows XP is installed" test_ref="oval:org.mitre.oval:tst:3"/> <criterion comment="a version of Windows for the x86 architecture is installed" test_ref="oval:org.mitre.oval:tst:3823"/> <criterion comment="Win2K/XP/2003/Vista/2008 Service Pack 2 is installed" test_ref="oval:org.mitre.oval:tst:3019"/> </criteria> </definition> <definition id="oval:org.mitre.oval:def:565" version="3" class="inventory"> <metadata> <title>Microsoft Windows Server 2003 SP1 (x86) is installed</title> <affected family="windows"> <platform>Microsoft Windows Server 2003</platform> </affected> <reference source="CPE" ref_id="cpe:/o:microsoft:windows_2003::sp1:x86"/> <description>A version of Microsoft Windows Server 2003 Service Pack 1 (x86) is installed.</description> <oval_repository> <dates> <submitted date="2006-07-25T12:05:33"> <contributor organization="ThreatGuard, Inc.">Robert L. Hollis</contributor> </submitted> <status_change date="2006-07-27T20:15:00.000-04:00">DRAFT</status_change> <status_change date="2006-09-27T12:29:31.197-04:00">INTERIM</status_change> <status_change date="2006-10-16T15:58:44.696-04:00">ACCEPTED</status_change> <modified comment="Changed the CPE reference" date="2008-04-04T11:17:00.371-04:00"> <contributor organization="The MITRE Corporation">Andrew Buttner</contributor> </modified> <status_change date="2008-04-04T11:28:41.395-04:00">INTERIM</status_change> <status_change date="2008-04-21T04:00:23.334-04:00">ACCEPTED</status_change> <modified comment="Modified platform to Microsoft Windows Server 2003" date="2009-05-25T10:32:00.713-04:00"> <contributor organization="The MITRE Corporation">Brendan Miles</contributor> </modified> <status_change date="2009-06-08T04:00:45.073-04:00">INTERIM</status_change> <status_change date="2009-06-29T04:00:32.233-04:00">ACCEPTED</status_change> </dates> <status>ACCEPTED</status> </oval_repository> </metadata> <criteria operator="AND"> <criterion comment="the installed operating system is part of the Microsoft Windows family" test_ref="oval:org.mitre.oval:tst:99"/> <criterion comment="a version of Microsoft Windows Server 2003 is installed" test_ref="oval:org.mitre.oval:tst:4"/> <criterion comment="a version of Windows for the x86 architecture is installed" test_ref="oval:org.mitre.oval:tst:3823"/> <criterion comment="Win2K/XP/2003/Vista service pack 1 is installed" test_ref="oval:org.mitre.oval:tst:2843"/> </criteria> </definition> <definition id="oval:org.mitre.oval:def:5631" version="2" class="inventory"> <metadata> <title>Microsoft Windows XP (x86) SP3 is installed</title> <affected family="windows"> <platform>Microsoft Windows XP</platform> </affected> <reference source="CPE" ref_id="cpe:/o:microsoft:windows_xp::sp3:x86"/> <description>A version of Microsoft Windows XP (x86) Service Pack 3 is installed.</description> <oval_repository> <dates> <submitted date="2008-06-10T14:50:00"> <contributor organization="Secure Elements, Inc.">Sudhir Gandhe</contributor> </submitted> <status_change date="2008-06-12T13:58:47.155-04:00">DRAFT</status_change> <status_change date="2008-06-30T04:00:18.370-04:00">INTERIM</status_change> <status_change date="2008-07-21T04:00:18.901-04:00">ACCEPTED</status_change> <modified comment="Modified platform to Microsoft Windows Server 2003" date="2009-05-25T10:32:00.713-04:00"> <contributor organization="The MITRE Corporation">Brendan Miles</contributor> </modified> <status_change date="2009-06-08T04:00:44.488-04:00">INTERIM</status_change> <status_change date="2009-06-29T04:00:31.426-04:00">ACCEPTED</status_change> </dates> <status>ACCEPTED</status> </oval_repository> </metadata> <criteria operator="AND"> <criterion comment="the installed operating system is part of the Microsoft Windows family" test_ref="oval:org.mitre.oval:tst:99"/> <criterion comment="a version of Microsoft Windows XP is installed" test_ref="oval:org.mitre.oval:tst:3"/> <criterion comment="a version of Windows for the x86 architecture is installed" test_ref="oval:org.mitre.oval:tst:3823"/> <criterion comment="Win2K/XP/2003 service pack 3 is installed" test_ref="oval:org.mitre.oval:tst:7814"/> </criteria> </definition> <definition id="oval:org.mitre.oval:def:4873" version="1" class="inventory"> <metadata> <title>Microsoft Windows Vista (32-bit) Service Pack 1 is installed</title> <affected family="windows"> <platform>Microsoft Windows Vista</platform> </affected> <reference source="CPE" ref_id="cpe:/o:microsoft:windows_vista::sp1:x86"/> <description>The operating system installed on the system is Microsoft Windows Vista (32-bit) Service Pack 1</description> <oval_repository> <dates> <submitted date="2008-03-26T10:44:02"> <contributor organization="Secure Elements, Inc.">Sudhir Gandhe</contributor> </submitted> <status_change date="2008-03-26T16:27:29.495-04:00">DRAFT</status_change> <modified comment="Changed the CPE reference" date="2008-04-04T11:17:00.108-04:00"> <contributor organization="The MITRE Corporation">Andrew Buttner</contributor> </modified> <status_change date="2008-04-21T04:00:20.428-04:00">INTERIM</status_change> <status_change date="2008-05-12T04:00:14.497-04:00">ACCEPTED</status_change> <modified comment="Changed registry check for amd64 to be a case insensitive equals" date="2009-09-04T10:48:00.140-05:00"> <contributor organization="Hewlett-Packard">Todd Dolinsky</contributor> </modified> <status_change date="2009-09-07T04:00:25.416-04:00">INTERIM</status_change> </dates> <status>INTERIM</status> </oval_repository> </metadata> <criteria> <criterion comment="the installed operating system is part of the Microsoft Windows family" test_ref="oval:org.mitre.oval:tst:99"/> <criterion comment="Windows Vista is installed" test_ref="oval:org.mitre.oval:tst:7914"/> <criterion negate="true" comment="a version of Windows for the x64 architecture is installed" test_ref="oval:org.mitre.oval:tst:3653"/> <criterion comment="Win2K/XP/2003/Vista service pack 1 is installed" test_ref="oval:org.mitre.oval:tst:2843"/> </criteria> </definition> <definition id="oval:org.mitre.oval:def:1935" version="3" class="inventory"> <metadata> <title>Microsoft Windows Server 2003 SP2 (x86) is installed</title> <affected family="windows"> <platform>Microsoft Windows Server 2003</platform> </affected> <reference source="CPE" ref_id="cpe:/o:microsoft:windows_2003::sp2:x86"/> <description>A version of Microsoft Windows Server 2003 Service Pack 2 (x86) is installed.</description> <oval_repository> <dates> <submitted date="2007-04-09T09:49:32"> <contributor organization="Secure Elements, Inc.">Sudhir Gandhe</contributor> </submitted> <status_change date="2007-04-09T11:20:00.000-05:00">DRAFT</status_change> <status_change date="2007-04-25T19:52:21.584-04:00">INTERIM</status_change> <modified comment="Dropped tst:4078 in favor of existing tst:3019." date="2007-04-26T13:47:00.955-04:00"> <contributor organization="ThreatGuard, Inc.">Robert L. Hollis</contributor> </modified> <status_change date="2007-05-23T15:05:34.661-04:00">ACCEPTED</status_change> <modified comment="Changed the CPE reference" date="2008-04-04T11:17:00.742-04:00"> <contributor organization="The MITRE Corporation">Andrew Buttner</contributor> </modified> <status_change date="2008-04-04T11:25:17.766-04:00">INTERIM</status_change> <status_change date="2008-04-21T04:00:15.390-04:00">ACCEPTED</status_change> <modified comment="Modified platform to Microsoft Windows Server 2003" date="2009-05-25T10:32:00.713-04:00"> <contributor organization="The MITRE Corporation">Brendan Miles</contributor> </modified> <status_change date="2009-06-08T04:00:38.077-04:00">INTERIM</status_change> <status_change date="2009-06-29T04:00:22.663-04:00">ACCEPTED</status_change> </dates> <status>ACCEPTED</status> </oval_repository> </metadata> <criteria operator="AND"> <criterion comment="the installed operating system is part of the Microsoft Windows family" test_ref="oval:org.mitre.oval:tst:99"/> <criterion comment="a version of Microsoft Windows Server 2003 is installed" test_ref="oval:org.mitre.oval:tst:4"/> <criterion comment="a version of Windows for the x86 architecture is installed" test_ref="oval:org.mitre.oval:tst:3823"/> <criterion comment="Win2K/XP/2003/Vista/2008 Service Pack 2 is installed" test_ref="oval:org.mitre.oval:tst:3019"/> </criteria> </definition> <definition id="oval:org.mitre.oval:def:1282" version="2" class="inventory"> <metadata> <title>Microsoft Windows Vista (32-bit) is installed</title> <affected family="windows"> <platform>Microsoft Windows Vista</platform> </affected> <reference source="CPE" ref_id="cpe:/o:microsoft:windows_vista:::x86"/> <description>The operating system installed on the system is Microsoft Windows Vista (32-bit)</description> <oval_repository> <dates> <submitted date="2007-04-11T11:27:37.975-04:00"> <contributor organization="The MITRE Corporation">Jonathan Baker</contributor> </submitted> <status_change date="2007-04-11T12:15:00.000-04:00">DRAFT</status_change> <status_change date="2007-04-30T08:18:46.566-04:00">INTERIM</status_change> <status_change date="2007-05-23T15:05:26.800-04:00">ACCEPTED</status_change> <modified comment="Vista test updated because of the conflictions with Server 2008" date="2008-03-26T10:51:02.210-04:00"> <contributor organization="Secure Elements, Inc.">Sudhir Gandhe</contributor> </modified> <status_change date="2008-03-31T04:00:20.410-04:00">INTERIM</status_change> <modified comment="Changed the CPE reference" date="2008-04-04T11:17:00.749-04:00"> <contributor organization="The MITRE Corporation">Andrew Buttner</contributor> </modified> <status_change date="2008-04-21T04:00:11.683-04:00">ACCEPTED</status_change> <modified comment="Changed registry check for amd64 to be a case insensitive equals" date="2009-09-04T10:48:00.140-05:00"> <contributor organization="Hewlett-Packard">Todd Dolinsky</contributor> </modified> <status_change date="2009-09-07T04:00:23.744-04:00">INTERIM</status_change> </dates> <status>INTERIM</status> </oval_repository> </metadata> <criteria> <criterion comment="the installed operating system is part of the Microsoft Windows family" test_ref="oval:org.mitre.oval:tst:99"/> <criterion comment="Windows Vista is installed" test_ref="oval:org.mitre.oval:tst:7914"/> <criterion negate="true" comment="a version of Windows for the x64 architecture is installed" test_ref="oval:org.mitre.oval:tst:3653"/> </criteria> </definition> <definition id="oval:org.mitre.oval:def:85" version="3" class="inventory"> <metadata> <title>Microsoft Windows 2000 is installed</title> <affected family="windows"> <platform>Microsoft Windows 2000</platform> </affected> <reference source="CPE" ref_id="cpe:/o:microsoft:windows_2000"/> <description>The operating system installed on the system is Microsoft Windows 2000.</description> <oval_repository> <dates> <submitted date="2006-06-26T12:55:00.000-04:00"> <contributor organization="The MITRE Corporation">Andrew Buttner</contributor> </submitted> <status_change date="2006-06-26T12:55:00.000-04:00">ACCEPTED</status_change> <modified comment="Added CPE reference." date="2007-04-30T07:48:00.142-04:00"> <contributor organization="The MITRE Corporation">Jonathan Baker</contributor> </modified> <status_change date="2007-04-30T08:03:27.160-04:00">INTERIM</status_change> <status_change date="2007-05-23T15:05:53.257-04:00">ACCEPTED</status_change> <modified comment="Changed the CPE reference" date="2008-04-04T11:17:00.718-04:00"> <contributor organization="The MITRE Corporation">Andrew Buttner</contributor> </modified> <status_change date="2008-04-04T11:29:31.741-04:00">INTERIM</status_change> <status_change date="2008-04-21T04:00:24.735-04:00">ACCEPTED</status_change> </dates> <status>ACCEPTED</status> </oval_repository> </metadata> <criteria operator="AND"> <criterion comment="the installed operating system is part of the Microsoft Windows family" test_ref="oval:org.mitre.oval:tst:99"/> <criterion comment="Windows 2000 is installed" test_ref="oval:org.mitre.oval:tst:2"/> </criteria> </definition> </definitions> <tests> <registry_test id="oval:org.mitre.oval:tst:7814" version="1" comment="Win2K/XP/2003 service pack 3 is installed" check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows"> <object object_ref="oval:org.mitre.oval:obj:717"/> <state state_ref="oval:org.mitre.oval:ste:3794"/> </registry_test> <registry_test id="oval:org.mitre.oval:tst:3" version="1" comment="a version of Microsoft Windows XP is installed" check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows"> <object object_ref="oval:org.mitre.oval:obj:123"/> <state state_ref="oval:org.mitre.oval:ste:3"/> </registry_test> <registry_test id="oval:org.mitre.oval:tst:2843" version="1" comment="Win2K/XP/2003/Vista service pack 1 is installed" check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows"> <object object_ref="oval:org.mitre.oval:obj:717"/> <state state_ref="oval:org.mitre.oval:ste:2662"/> </registry_test> <registry_test id="oval:org.mitre.oval:tst:4" version="1" comment="a version of Microsoft Windows Server 2003 is installed" check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows"> <object object_ref="oval:org.mitre.oval:obj:123"/> <state state_ref="oval:org.mitre.oval:ste:4"/> </registry_test> <registry_test id="oval:org.mitre.oval:tst:3823" version="1" comment="a version of Windows for the x86 architecture is installed" check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows"> <object object_ref="oval:org.mitre.oval:obj:1576"/> <state state_ref="oval:org.mitre.oval:ste:3649"/> </registry_test> <registry_test id="oval:org.mitre.oval:tst:3019" version="1" comment="Win2K/XP/2003/Vista/2008 Service Pack 2 is installed" check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows"> <object object_ref="oval:org.mitre.oval:obj:717"/> <state state_ref="oval:org.mitre.oval:ste:2827"/> </registry_test> <family_test id="oval:org.mitre.oval:tst:99" version="1" comment="the installed operating system is part of the Microsoft Windows family" check_existence="at_least_one_exists" check="only one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#independent"> <object object_ref="oval:org.mitre.oval:obj:99"/> <state state_ref="oval:org.mitre.oval:ste:99"/> </family_test> <registry_test id="oval:org.mitre.oval:tst:7914" version="1" comment="Windows Vista is installed" check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows"> <object object_ref="oval:org.mitre.oval:obj:5590"/> <state state_ref="oval:org.mitre.oval:ste:3828"/> </registry_test> <registry_test id="oval:org.mitre.oval:tst:3653" version="3" comment="a version of Windows for the x64 architecture is installed" check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows"> <object object_ref="oval:org.mitre.oval:obj:1576"/> <state state_ref="oval:org.mitre.oval:ste:3180"/> </registry_test> <registry_test id="oval:org.mitre.oval:tst:2" version="1" comment="Windows 2000 is installed" check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows"> <object object_ref="oval:org.mitre.oval:obj:123"/> <state state_ref="oval:org.mitre.oval:ste:2"/> </registry_test> <registry_test id="oval:org.secpod.oval:tst:91001" version="1" comment="Check for Internet Explorer less than or equal to 7.0.6000.16711" check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows"> <object object_ref="oval:org.mitre.oval:obj:247"/> <state state_ref="oval:org.secpod.oval:ste:91001"/> </registry_test> <registry_test id="oval:org.secpod.oval:tst:91002" version="1" comment="Check the Internet Explorer version greater than or equal to 7" check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows"> <object object_ref="oval:org.mitre.oval:obj:247"/> <state state_ref="oval:org.secpod.oval:ste:91002"/> </registry_test> <registry_test id="oval:org.secpod.oval:tst:91003" version="1" comment="Check for Internet Explorer less than or equal to 6.0.2900.2180" check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows"> <object object_ref="oval:org.mitre.oval:obj:247"/> <state state_ref="oval:org.secpod.oval:ste:91003"/> </registry_test> <registry_test id="oval:org.secpod.oval:tst:91004" version="1" comment="Check the Internet Explorer version greater than or equal to 6" check_existence="at_least_one_exists" check="at least one" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows"> <object object_ref="oval:org.mitre.oval:obj:247"/> <state state_ref="oval:org.secpod.oval:ste:91004"/> </registry_test> </tests> <objects> <registry_object id="oval:org.mitre.oval:obj:123" version="1" comment="Registry key that hold the current windows os version" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows"> <hive>HKEY_LOCAL_MACHINE</hive> <key>SOFTWARE\Microsoft\Windows NT\CurrentVersion</key> <name>CurrentVersion</name> </registry_object> <registry_object id="oval:org.mitre.oval:obj:717" version="1" comment="This registry key holds the service pack installed on the host if one is present." xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows"> <hive>HKEY_LOCAL_MACHINE</hive> <key>SOFTWARE\Microsoft\Windows NT\CurrentVersion</key> <name>CSDVersion</name> </registry_object> <family_object id="oval:org.mitre.oval:obj:99" version="1" comment="This is the default family object. Only one family object should exist." xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#independent"/> <registry_object id="oval:org.mitre.oval:obj:5590" version="1" comment="This registry key ProductName" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows"> <hive>HKEY_LOCAL_MACHINE</hive> <key>SOFTWARE\Microsoft\Windows NT\CurrentVersion</key> <name>ProductName</name> </registry_object> <registry_object id="oval:org.mitre.oval:obj:1576" version="1" comment="This registry key identifies the architecture on the system" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows"> <hive>HKEY_LOCAL_MACHINE</hive> <key>SYSTEM\CurrentControlSet\Control\Session Manager\Environment</key> <name>PROCESSOR_ARCHITECTURE</name> </registry_object> <registry_object id="oval:org.mitre.oval:obj:6012" version="1" comment="The registry key that holds the version of the Seamonkey" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows"> <hive>HKEY_LOCAL_MACHINE</hive> <key>SOFTWARE\mozilla.org\Seamonkey</key> <name>CurrentVersion</name> </registry_object> <registry_object id="oval:org.mitre.oval:obj:247" version="1" comment="This registry key identifies the version of Internet Explorer" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows"> <hive>HKEY_LOCAL_MACHINE</hive> <key>SOFTWARE\Microsoft\Internet Explorer</key> <name>Version</name> </registry_object> </objects> <states> <registry_state id="oval:org.mitre.oval:ste:3794" version="1" comment="The registry key has a value of Service Pack 3" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows"> <value>Service Pack 3</value> </registry_state> <registry_state id="oval:org.mitre.oval:ste:3" version="1" comment="The registry key has a value of 5.1" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows"> <value>5.1</value> </registry_state> <registry_state id="oval:org.mitre.oval:ste:2662" version="1" comment="The registry key has a value of Service Pack 1" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows"> <value>Service Pack 1</value> </registry_state> <registry_state id="oval:org.mitre.oval:ste:4" version="1" comment="The registry key has a value of 5.2" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows"> <value>5.2</value> </registry_state> <registry_state id="oval:org.mitre.oval:ste:3649" version="1" comment="x86 architecture" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows"> <value>x86</value> </registry_state> <registry_state id="oval:org.mitre.oval:ste:2827" version="1" comment="The registry key has a value of Service Pack 2" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows"> <value>Service Pack 2</value> </registry_state> <family_state id="oval:org.mitre.oval:ste:99" version="1" comment="Microsoft Windows family" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#independent"> <family>windows</family> </family_state> <registry_state id="oval:org.mitre.oval:ste:3828" version="1" comment="The registry key matches with Vista" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows"> <value operation="pattern match">.*[Vv]ista.*</value> </registry_state> <registry_state id="oval:org.mitre.oval:ste:3180" version="3" comment="The registry key has a value of amd64" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows"> <value operation="case insensitive equals">amd64</value> </registry_state> <registry_state id="oval:org.mitre.oval:ste:2" version="1" comment="Registry key has a value of 5.0" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows"> <value>5.0</value> </registry_state> <registry_state id="oval:org.secpod.oval:ste:91001" version="1" comment="Check for Internet Explorer less than or equal to 7.0.6000.16711" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows"> <value datatype="version" operation="less than or equal">7.00.6000.16117</value> </registry_state> <registry_state id="oval:org.secpod.oval:ste:91002" version="1" comment="Check for Internet Explorer version greater than or equal to 7" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows"> <value datatype="version" operation="greater than or equal">7.0</value> </registry_state> <registry_state id="oval:org.secpod.oval:ste:91003" version="1" comment="Check for Internet Explorer less than or equal to 6.0.2900.2180" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows"> <value datatype="version" operation="less than or equal">6.0.2900.2180</value> </registry_state> <registry_state id="oval:org.secpod.oval:ste:91004" version="1" comment="Check for Internet Explorer version greater than or equal to 6" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows"> <value datatype="version" operation="greater than or equal">6.0</value> </registry_state> </states> </oval_definitions> |
||||||||||||||||
bakerj
|
Chandan,
Thanks for the two new IE vulnerability definitions. These definitions are now available in the OVAL Repository for further community review. Jon ============================================ Jonathan O. Baker G022 - IA Industry Collaboration The MITRE Corporation Email: [hidden email] >-----Original Message----- >From: chandan [mailto:[hidden email]] >Sent: Wednesday, September 23, 2009 10:14 AM >To: oval-discussion-list OVAL Discussion List/Closed Public Discussi >Subject: [OVAL-DISCUSSION-LIST] Oval for IE > >New Oval Definitions on Internet Explorer. > >Thanks!! >Chandan >www.secpod.com > >To unsubscribe, send an email message to [hidden email] with >SIGNOFF OVAL-DISCUSSION-LIST >in the BODY of the message. If you have difficulties, write to OVAL- >[hidden email]. To unsubscribe, send an email message to [hidden email] with SIGNOFF OVAL-DISCUSSION-LIST in the BODY of the message. If you have difficulties, write to [hidden email]. |
||||||||||||||||
| Free Embeddable Forum Powered by Nabble | Help |
