Oval Definition:oval:org.mitre.oval:def:1813
Revision Date:2011-05-16Version:46
Title:Windows XP (32-bit, SP1) RPCSS DCOM Buffer Overflow (Blaster)
Description:Heap-based buffer overflow in the Distributed Component Object Model (DCOM) interface in the RPCSS Service allows remote attackers to execute arbitrary code via a malformed DCERPC DCOM object activation request packet with modified length fields, a different vulnerability than CVE-2003-0352 (Blaster/Nachi) and CVE-2003-0528.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2003-0715
Platform(s):Microsoft Windows XP
Product(s):Distributed Component Object Model (DCOM)
Definition Synopsis
  • Software section
  • Windows XP 32-bit SP1 is installed
  • Windows XP 32-bit edition is installed
  • Windows XP is installed
  • AND 32-Bit version of Windows is installed
  • AND Win2K/XP/2003/Vista service pack 1 is installed
  • AND the version of rpcrt4.dll is less than 5.1.2600.1254
  • AND NOT the patch kb824146 is installed (Hotfix key)
  • AND Configuration section
  • DCOM is enabled
    • BACK