oval:org.mitre.oval:def:1888

Definition Id: oval:org.mitre.oval:def:1888

Oval ID:	oval:org.mitre.oval:def:1888
Title:	LSASS Privilege Escalation Vulnerability (64-bit Server 2003)
Description:	LSASS (Local Security Authority Subsystem Service) of Windows 2000 Server and Windows Server 2003 does not properly validate connection information, which allows local users to gain privileges via a specially-designed program.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2004-0894	Version:	1
Platform(s):	Microsoft Windows Server 2003	Product(s):	Local Security Authority Subsystem Service (LSASS)
Definition Synopsis:
Microsoft Windows Server 2003 64-Bit Edition Windows Server 2003 is installed AND 64-Bit version of Windows is installed AND the version of lsasrv.dll is less than 5.2.3790.220 AND NOT the patch kb885835is installed (Hotfix key)