Microsoft Windows NT LSASS.EXE Access Violation DoS

1997-06-28T00:00:00
ID OSVDB:11477
Type osvdb
Reporter OSVDB
Modified 1997-06-28T00:00:00

Description

Vulnerability Description

Microsoft Windows NT 4.0 contains a flaw that may allow a remote denial of service. The issue is triggered when a remote attacker causes an access violation within LSASS.exe causing the process to stop running, and will result in loss of availability for the operating system.

Solution Description

Upgrade to version service pack 4 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

Microsoft Windows NT 4.0 contains a flaw that may allow a remote denial of service. The issue is triggered when a remote attacker causes an access violation within LSASS.exe causing the process to stop running, and will result in loss of availability for the operating system.

References:

Microsoft Knowledge Base Article: Q154087 Keyword: LSA/LSARPC ISS X-Force ID: 1892 CVE-1999-0227