OVAL Repository - View Definition: oval:org.mitre.oval:def:778

OVAL Repository > View Definition

View Definition

NEW SEARCH : BACK

Definition Id: oval:org.mitre.oval:def:778		Version: 7 Last Modified: 2011-04-26
Title:	LSASS Privilege Escalation Vulnerability (Windows 2000)
Description:	LSASS (Local Security Authority Subsystem Service) of Windows 2000 Server and Windows Server 2003 does not properly validate connection information, which allows local users to gain privileges via a specially-designed program.
Family:	windows	Class:	vulnerability
Status:	ACCEPTED	Reference(s):	CVE-2004-0894
Platform(s):	Microsoft Windows 2000	Product(s):	Local Security Authority Subsystem Service (LSASS)
Definition Synopsis:
Windows 2000 (sp4 or earlier) is installed Windows 2000 is installed AND NOT Win2K/XP/2003 service pack 5 (or later) is installed AND the version of lsasrv.dll is less than 5.0.2195.6987 AND NOT the patch kb885835is installed (Hotfix key)

NEW SEARCH : BACK

OVAL Repository

About the Repository

OVAL Repository Forum

Author’s Resources

Items of Interest