oval:org.mitre.oval:def:751

Definition Id: oval:org.mitre.oval:def:751

Oval ID:	oval:org.mitre.oval:def:751
Title:	Microsoft Data Access Components 2.7 Broadcast Response Buffer Overflow
Description:	Buffer overflow in a component of Microsoft Data Access Components (MDAC) 2.5 through 2.8 allows remote attackers to execute arbitrary code via a malformed UDP response to a broadcast request.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2003-0903	Version:	2
Platform(s):	Microsoft Windows 98 Microsoft Windows ME Microsoft Windows NT Microsoft Windows 2000 Microsoft Windows XP	Product(s):	Microsoft Data Access Components 2.7
Definition Synopsis:
Microsoft Data Access Components 2.7 is installed and a vulnerable version of sqlsrv32.dll and odbcbcp.dll exists Microsoft Data Access Components 2.7 (RTM) is installed and both sqlsrv32.dll and odbcbcp.dll are less than 2000.81.9002.0 Microsoft Data Access Components 2.7 (RTM) is installed AND the version of sqlsrv32.dll is less than 2000.81.9002.0 AND the version of odbcbcp.dll is less than 2000.81.9002.0 OR Microsoft Data Access Components 2.7 (SP1) is installed and both sqlsrv32.dll and odbcbcp.dll are less than 2000.81.9042.0 Microsoft Data Access Components 2.7 (SP1) is installed AND the version of sqlsrv32.dll is less than 2000.81.9042.0 AND the version of odbcbcp.dll is less than 2000.81.9042.0 AND NOT the patch q832483 is installed