| Definition Id: oval:org.mitre.oval:def:958 |
Version: 7
Last Modified: 2011-04-26
|
| Title: |
Windows XP RPCSS Service DCOM Activation Denial of Service |
| Description: |
An Activation function in the RPCSS Service involved with DCOM activation for Microsoft Windows 2000, XP, and 2003 allows remote attackers to cause a denial of service (memory consumption) via an activation request with a large length field. |
| Family: |
windows |
Class: |
vulnerability |
| Status: |
ACCEPTED |
Reference(s): |
CVE-2004-0116
|
| Platform(s): |
Microsoft Windows XP |
Product(s): |
Remote Procedure Call (RPC) |
| Definition Synopsis: |
- Software section
- a vulnerable version of rpcss.dll exists on XP
- 32-bit version of Windows and a vulnerable version of rpcss.dll exists
- 32-Bit version of Windows is installed
- AND a vulnerable version of rpcss.dll exists depending on service pack level
- no service pack is installed and rpcss.dll is less than 5.1.2600.135
- OR service pack 1 is installed and rpcss.dll is less than 5.1.2600.1361
- OR 64-bit version of Windows and rpcss.dll is less than 5.1.2600.1361
- AND NOT the patch kb828741 is installed
- AND Windows XP (sp1 or earlier) is installed
- AND Configuration section
|
