oval:org.mitre.oval:def:704

Definition Id: oval:org.mitre.oval:def:704

Oval ID:	oval:org.mitre.oval:def:704
Title:	Windows 2000 WINS Buffer Overflow
Description:	The Windows Internet Naming Service (WINS) for Microsoft Windows Server 2003, and possibly Windows NT and Server 2000, does not properly validate the length of certain packets, which allows attackers to cause a denial of service and possibly execute arbitrary code.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2003-0825	Version:	2
Platform(s):	Microsoft Windows 2000	Product(s):	Windows Internet Naming Service (WINS)
Definition Synopsis:
Software section Windows 2000 Server is installed Windows 2000 is installed AND Windows NT server product option this is an NT Server (stand-alone) AND this is an NT Server (domain controller) AND the version of wins.exe is less than 5.0.2195.6870 AND NOT the patch kb830352 is installed (Hotfix key) AND Configuration section the wins service is enabled