Oval Definition:oval:org.mitre.oval:def:1561
Revision Date:2011-05-16Version:47
Title:Windows Kernel LPC Privilege Escalation Vulnerability (Windows 2000)
Description:The Local Procedure Call (LPC) interface of the Windows Kernel for Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 does not properly validate the lengths of messages sent to the LPC port, which allows local users to gain privileges, aka "Windows Kernel Vulnerability."
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2004-0893
Platform(s):Microsoft Windows 2000
Product(s):Windows kernel
Definition Synopsis
  • Windows 2000 (sp4 or earlier) is installed
  • Windows 2000 is installed
  • AND NOT Win2K/XP/2003 service pack 5 (or later) is installed
  • AND The version of Ntoskrnl.exe is less than 5.0.2195.6992
  • AND NOT the patch kb885835is installed (Hotfix key)
  • BACK