oval:org.mitre.oval:def:1808

Definition Id: oval:org.mitre.oval:def:1808

Oval ID:	oval:org.mitre.oval:def:1808
Title:	Windows 2000 Negotiate Security Software Provider Denial of Service Vulnerability
Description:	The Negotiate Security Software Provider (SSP) interface in Windows 2000, Windows XP, and Windows Server 2003, allows remote attackers to cause a denial of service (crash from null dereference) or execute arbitrary code via a crafted SPNEGO NegTokenInit request during authentication protocol selection.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2004-0119	Version:	3
Platform(s):	Microsoft Windows 2000	Product(s):	Negotiate SSP interface
Definition Synopsis:
Software section Windows 2000 is installed AND NOT the patch kb835732 is installed AND The version of Ipnathlp.dll is less than 5.0.2195.6902 AND Configuration section Negotiate is enabled