oval:org.mitre.oval:def:3460

Definition Id: oval:org.mitre.oval:def:3460

Oval ID:	oval:org.mitre.oval:def:3460
Title:	Exchange Server 2003 (Windows Server 2003, 64-Bit Edition) Routing Engine Buffer Overflow
Description:	The SMTP (Simple Mail Transfer Protocol) component of Microsoft Windows XP 64-bit Edition, Windows Server 2003, Windows Server 2003 64-bit Edition, and the Exchange Routing Engine component of Exchange Server 2003, allows remote attackers to execute arbitrary code via a malicious DNS response message containing length values that are not properly validated.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2004-0840	Version:	2
Platform(s):	Microsoft Windows Server 2003	Product(s):	SMTP
Definition Synopsis:
Software section Windows Server 2003 is installed AND 64-Bit version of Windows is installed AND The version of smtpsvc.dll is less than 6.0.3790.211 AND NOT the patch WindowsServer2003-KB885881-ia64-enu.exe is installed AND Configuration section SMTP Enabled