oval:org.mitre.oval:def:919

Definition Id: oval:org.mitre.oval:def:919

Oval ID:	oval:org.mitre.oval:def:919
Title:	Windows Server 2003 LSASS Buffer Overflow (Sasser Worm Vulnerability
Description:	Stack-based buffer overflow in certain Active Directory service functions in LSASRV.DLL of the Local Security Authority Subsystem Service (LSASS) in Microsoft Windows NT 4.0 SP6a, 2000 SP2 through SP4, XP SP1, Server 2003, NetMeeting, Windows 98, and Windows ME, allows remote attackers to execute arbitrary code via a packet that causes the DsRolerUpgradeDownlevelServer function to create long debug entries for the DCPROMO.LOG log file, as exploited by the Sasser worm.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2003-0533	Version:	3
Platform(s):	Microsoft Windows Server 2003	Product(s):
Definition Synopsis:
Microsoft Windows Server 2003 is installed AND the version of lsasrv.dll is less than 5.2.3790.134 AND NOT the patch kb835732 is installed

Definition Id: oval:org.mitre.oval:def:128

Oval ID:	oval:org.mitre.oval:def:128
Title:	Microsoft Windows Server 2003 is installed
Description:	The operating system installed on the system is Microsoft Windows Server 2003.
Family:	windows	Class:	inventory
Reference(s):	cpe:/o:microsoft:windows_2003_server	Version:	7
Platform(s):	Microsoft Windows Server 2003	Product(s):
Definition Synopsis:
the installed operating system is part of the Microsoft Windows family AND Windows Server 2003 is installed
Referenced By:
oval:org.mitre.oval:def:919