Oval Definition:	oval:org.mitre.oval:def:1030
Revision Date: 2007-02-20 Version: 42 Title: Windows Server 2003 COM Internet Services/RPC over HTTP Proxy Component Buffer Overflow Description: Buffer overflow in the COM Internet Services and in the RPC over HTTP Proxy components for Microsoft Windows NT Server 4.0, NT 4.0 Terminal Server Edition, 2000, XP, and Server 2003 allows remote attackers to cause a denial of service via a crafted request. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2003-0807 Platform(s): Microsoft Windows Server 2003 Product(s): COM Internet Services Definition Synopsis Software section Windows Server 2003 (excluding WinXP 64-bit, Version 2003) is installed Windows Server 2003 is installed AND NOT this is an NT Workstation AND a vulnerable version of rpcproxy.dll exists on Server 2003 machine has followed the GDR update path and rpcproxy.dll is less than 5.2.3790.137 OR machine has followed the QFE update path and rpcproxy.dll is less than 5.2.3790.141 AND NOT the patch kb828741 is installed AND Configuration section COM Internet Services are enabled
BACK