oval:org.mitre.oval:def:7195

Definition Id: oval:org.mitre.oval:def:7195

Oval ID:	oval:org.mitre.oval:def:7195
Title:	Remote code execution vulnerability in Canonical Display Driver
Description:	Integer overflow in cdd.dll in the Canonical Display Driver (CDD) in Microsoft Windows Server 2008 R2 and Windows 7 on 64-bit platforms, when the Windows Aero theme is installed, allows context-dependent attackers to cause a denial of service (reboot) or possibly execute arbitrary code via a crafted image file that triggers incorrect data parsing after user-mode data is copied to kernel mode, as demonstrated using "Browse with Irfanview" and certain actions on a folder containing a large number of thumbnail images in Resample mode, possibly related to the ATI graphics driver or win32k.sys, aka "Canonical Display Driver Integer Overflow Vulnerability."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2009-3678	Version:	7
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2	Product(s):
Definition Synopsis:
IF Microsoft Windows 7 x64 Edition is installed AND Microsoft Windows Server 2008 R2 x64 Edition is installed AND GDR or LDR update has been applied Cdd.dll version is less than 6.1.7600.16595 OR LDR Cdd.dll version is greater than or equal to 6.1.7600.20000 AND Cdd.dll version is less than 6.1.7600.20715

Definition Id: oval:org.mitre.oval:def:6438

Oval ID:	oval:org.mitre.oval:def:6438
Title:	Microsoft Windows Server 2008 R2 x64 Edition is installed
Description:	The operating system installed on the system is Microsoft Windows Server 2008 R2 x64 Edition
Family:	windows	Class:	inventory
Reference(s):	cpe:/o:microsoft:windows_server_2008:r2::x64	Version:	9
Platform(s):	Microsoft Windows Server 2008 R2	Product(s):
Definition Synopsis:
the installed operating system is part of the Microsoft Windows family AND Windows Server 2008 R2 is installed AND a version of Windows for the x64 architecture is installed
Referenced By:
oval:org.mitre.oval:def:7195

Definition Id: oval:org.mitre.oval:def:5950

Oval ID:	oval:org.mitre.oval:def:5950
Title:	Microsoft Windows 7 x64 Edition is installed
Description:	The operating system installed on the system is Microsoft Windows 7 x64 Edition
Family:	windows	Class:	inventory
Reference(s):	cpe:/o:microsoft:windows_7:::x64	Version:	7
Platform(s):	Microsoft Windows 7	Product(s):
Definition Synopsis:
the installed operating system is part of the Microsoft Windows family AND Windows 7 is installed AND a version of Windows for the x64 architecture is installed
Referenced By:
oval:org.mitre.oval:def:7195