Oval Definition:	oval:org.mitre.oval:def:1808
Revision Date: 2007-05-23 Version: 43 Title: Windows 2000 Negotiate Security Software Provider Denial of Service Vulnerability Description: The Negotiate Security Software Provider (SSP) interface in Windows 2000, Windows XP, and Windows Server 2003, allows remote attackers to cause a denial of service (crash from null dereference) or execute arbitrary code via a crafted SPNEGO NegTokenInit request during authentication protocol selection. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2004-0119 Platform(s): Microsoft Windows 2000 Product(s): Negotiate SSP interface Definition Synopsis Software section Windows 2000 is installed AND NOT the patch kb835732 is installed AND The version of Ipnathlp.dll is less than 5.0.2195.6902 AND Configuration section Negotiate is enabled
BACK