Oval Definition:oval:org.mitre.oval:def:268
Revision Date:2011-10-03Version:50
Title:Windows XP Messenger Service Buffer Overflow
Description:The Messenger Service for Windows NT through Server 2003 does not properly verify the length of the message, which allows remote attackers to execute arbitrary code via a buffer overflow attack.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2003-0717
Platform(s):Microsoft Windows XP
Product(s):
Definition Synopsis
  • Software section
  • a vulnerable version of wkssvc.dll exists
  • no service pack is installed and wkssvc.dll is less than 5.1.2600.120
  • NOT Win2K/XP/2003 is patched
  • AND the version of wkssvc.dll is less than 5.1.2600.120
  • OR service pack 1 is installed and wkssvc.dll is less than 5.1.2600.1301
  • Win2K/XP/2003/Vista service pack 1 is installed
  • AND the version of wkssvc.dll is less than 5.1.2600.1301
  • AND a vulnerable version of msgsvc.dll exists
  • no service pack is installed and msgsvc.dll is less than 5.1.2600.120
  • NOT Win2K/XP/2003 is patched
  • AND the version of msgsvc.dll is less than 5.1.2600.120
  • OR service pack 1 is installed and msgsvc.dll is less than 5.1.2600.1301
  • Win2K/XP/2003/Vista service pack 1 is installed
  • AND the version of msgsvc.dll is less than 5.1.2600.1301
  • AND NOT the patch q828035 is installed (Hotfix key)
  • AND Windows XP (sp1 or earlier) is installed
  • Windows XP is installed
  • AND NOT Win2K/XP/2003 service pack 2 (or later) is installed
  • AND Configuration section
  • the messenger service is enabled
    • BACK