Oval Definition:oval:org.mitre.oval:def:1997
Revision Date:2011-05-16Version:50
Title:Windows XP Negotiate Security Software Provider Denial of Service Vulnerability
Description:The Negotiate Security Software Provider (SSP) interface in Windows 2000, Windows XP, and Windows Server 2003, allows remote attackers to cause a denial of service (crash from null dereference) or execute arbitrary code via a crafted SPNEGO NegTokenInit request during authentication protocol selection.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2004-0119
Platform(s):Microsoft Windows XP
Product(s):Negotiate SSP interface
Definition Synopsis
  • Software section
  • NOT the patch kb835732 is installed
  • AND Version checks on XP for Ipnathlp.dll
  • No service pack is installed and the version of Ipnathlp.dll is less than 5.1.2600.137
  • The version of Ipnathlp.dll is less than 5.1.2600.137
  • AND NOT Win2K/XP/2003 is patched
  • OR The version of Ipnathlp.dll is less than 5.1.2600.1364 and windows service pack 1 is installed
  • The version of Ipnathlp.dll is less than 5.1.2600.1364
  • AND Win2K/XP/2003/Vista service pack 1 is installed
  • OR 64 bit version of windows with service pack 1 installed and the version of Ipnathlp.dll is less than 5.1.2600.1364
  • The version of Ipnathlp.dll is less than 5.1.2600.1364 and windows service pack 1 is installed
  • The version of Ipnathlp.dll is less than 5.1.2600.1364
  • AND Win2K/XP/2003/Vista service pack 1 is installed
  • AND a version of Windows for the ia64 architecture is installed
  • AND Windows XP (sp1 or earlier) is installed
  • Windows XP is installed
  • AND NOT Win2K/XP/2003 service pack 2 (or later) is installed
  • AND Configuration section
  • Negotiate is enabled
    • BACK