Oval Definition:	oval:org.mitre.oval:def:6639
Revision Date: 2010-01-18 Version: 42 Title: Local Security Authority Subsystem Service Resource Exhaustion Vulnerability Description: LSASS.exe in the Local Security Authority Subsystem Service (LSASS) in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 allows remote authenticated users to cause a denial of service (CPU consumption) via a malformed ISAKMP request over IPsec, aka "Local Security Authority Subsystem Service Resource Exhaustion Vulnerability." Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2009-3675 Platform(s): Microsoft Windows 2000 Microsoft Windows Server 2003 Microsoft Windows XP Product(s): Definition Synopsis AND Microsoft Windows 2000 SP4 or later is installed AND the version of Oakley.dll is less than 5.0.2195.7343 OR Microsoft Windows XP (x86) SP2 is installed AND the version of Oakley.dll is less than 5.1.2600.3632 OR Microsoft Windows XP (x86) SP3 is installed AND the version of Oakley.dll is less than 5.1.2600.5886 OR Microsoft Windows XP x64 Edition SP2 is installed OR Microsoft Windows Server 2003 SP2 (x86) is installed OR Microsoft Windows Server 2003 SP2 (x64) is installed OR Microsoft Windows Server 2003 (ia64) SP2 is installed AND the version of Oakley.dll is less than 5.2.3790.4600
BACK