Oval Definition:	oval:org.mitre.oval:def:6044
Revision Date: 2009-03-09 Version: 22 Title: SMB Validation Denial of Service Vulnerability Description: srv.sys in the Server service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows remote attackers to cause a denial of service (system crash) or possibly have unspecified other impact via an SMB WRITE_ANDX packet with an offset that is inconsistent with the packet size, related to "insufficiently validating the buffer size," as demonstrated by a request to the \PIPE\lsarpc named pipe, aka "SMB Validation Denial of Service Vulnerability." Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2008-4114 Platform(s): Microsoft Windows 2000 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP Product(s): Definition Synopsis Windows 2000 SP4 Microsoft Windows 2000 SP4 or later is installed AND Srv.sys version is less than 5.0.2195.7222 OR Windows XP SP2 Microsoft Windows XP (x86) SP2 is installed AND Srv.sys version is less than 5.1.2600.3491 OR Windows XP SP3 Microsoft Windows XP (x86) SP3 is installed AND Srv.sys version is less than 5.1.2600.5725 OR Windows Server 2003 SP1 Microsoft Windows Server 2003 SP1 (x86) is installed AND Srv.sys version is less than 5.2.3790.3260 OR Windows Server 2003 SP2 Microsoft Windows Server 2003 SP2 (x86) is installed AND Srv.sys version is less than 5.2.3790.4425 OR Windows Server 2003 SP1\XP SP1 Windows Server 2003 SP1\XP SP1 Microsoft Windows Server 2003 SP1 (x64) is installed OR Microsoft Windows XP Professional x64 Edition SP1 is installed AND Srv.sys version is less than 5.2.3790.3260 OR Windows Server 2003 SP2\XP SP2 Windows Server 2003 SP2\XP SP2 Microsoft Windows Server 2003 SP2 (x64) is installed OR Microsoft Windows XP x64 Edition SP2 is installed AND Srv.sys version is less than 5.2.3790.4425 OR Windows Vista Microsoft Windows Vista (32-bit) is installed AND Srv.sys version is greater than or equal to 6.0.6000.16000 AND Srv.sys version is less than 6.0.6000.16789 OR Windows Vista Microsoft Windows Vista (32-bit) is installed AND Srv.sys version is greater than or equal to 6.0.6000.20000 AND Srv.sys version is less than 6.0.6000.20976 OR Windows Vista\Server 2008 Windows Vista\Server 2008 Microsoft Windows Vista (32-bit) Service Pack 1 is installed OR Microsoft Windows Server 2008 (32-bit) is installed AND Srv.sys version is greater than or equal to 6.0.6001.18000 AND Srv.sys version is less than 6.0.6001.18185 OR Windows Vista SP1\Server 2008 Windows Vista SP1\Server 2008 Microsoft Windows Vista (32-bit) Service Pack 1 is installed OR Microsoft Windows Server 2008 (32-bit) is installed AND Srv.sys version is greater than or equal to 6.0.6001.22000 AND Srv.sys version is less than 6.0.6001.22331 OR Windows Vista Microsoft Windows Vista x64 Edition is installed AND Srv.sys version is greater than or equal to 6.0.6000.16000 AND Srv.sys version is less than 6.0.6000.16789 OR Windows Vista Microsoft Windows Vista x64 Edition is installed AND Srv.sys version is greater than or equal to 6.0.6000.20000 AND Srv.sys version is less than 6.0.6000.20976 OR Windows Vista SP1\Server 2008 Windows Vista SP1\Server 2008 Microsoft Windows Vista x64 Edition Service Pack 1 is installed OR Microsoft Windows Server 2008 (64-bit) is installed AND Srv.sys version is greater than or equal to 6.0.6001.18000 AND Srv.sys version is less than 6.0.6001.18185 OR Windows Vista SP1\Server 2008 Windows Vista SP1\Server 2008 Microsoft Windows Vista x64 Edition Service Pack 1 is installed OR Microsoft Windows Server 2008 (64-bit) is installed AND Srv.sys version is greater than or equal to 6.0.6001.22000 AND Srv.sys version is less than 6.0.6001.22331
BACK