Oval Definition:	oval:org.mitre.oval:def:1888
Revision Date: 2005-02-23 Version: 42 Title: LSASS Privilege Escalation Vulnerability (64-bit Server 2003) Description: LSASS (Local Security Authority Subsystem Service) of Windows 2000 Server and Windows Server 2003 does not properly validate connection information, which allows local users to gain privileges via a specially-designed program. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2004-0894 Platform(s): Microsoft Windows Server 2003 Product(s): Local Security Authority Subsystem Service (LSASS) Definition Synopsis Microsoft Windows Server 2003 64-Bit Edition Windows Server 2003 is installed AND a version of Windows for the ia64 architecture is installed AND the version of lsasrv.dll is less than 5.2.3790.220 AND NOT the patch kb885835is installed (Hotfix key)
BACK