Lucene search
SAINT CorporationSAINT:046E7435E6A7E9C822D01D7F1541DC19HistoryApr 04, 2006 - 12:00 a.m.
Windows LSASS buffer overflow
2006-04-0400:00:00
SAINT Corporation
www.saintcorporation.com
58
0.972 High
EPSS
Percentile
99.8%
Added: 04/04/2006
CVE: CVE-2003-0533
BID: 10108
OSVDB: 5248
Background
The Local Security Authority Subsystem Service (LSASS) provides an interface for managing local security, domain authentication, and Active Directory processes.
Problem
A buffer overflow in the **DsRolepInitializeLog** function in the Windows LSASS service allows remote command execution.
Resolution
Apply the patch referenced in Microsoft Security Bulletin 04-011.
References
<http://www.kb.cert.org/vuls/id/753212>
Limitations
This exploit may cause the target system to crash.
Platforms
Windows 2000
Windows XP
Related
cve
cve
CVE-2003-0533
2004-06-01 04:00:00
canvas
canvas
Immunity Canvas: MS04_011_LSASS
2004-06-01 04:00:00
nessus
nessus
Sasser Virus Detection
2004-05-01 00:00:00
MS04-011: Microsoft Hotfix (credentialed check) (835732)
2004-04-13 00:00:00
packetstorm
packetstorm
Microsoft LSASS Service DsRolerUpgradeDownlevelServer Overflow
2009-11-26 00:00:00
cert
cert
checkpoint_advisories
checkpoint_advisories
Microsoft Active Directory LSASS Buffer Overflow (MS04-011; CVE-2003-0533)
2005-10-09 00:00:00
MS-RPC over CIFS Inspection Properties (CVE-2003-0533)
2005-10-09 00:00:00
saint
saint
Windows LSASS buffer overflow
2006-04-04 00:00:00
Windows LSASS buffer overflow
2006-04-04 00:00:00
Windows LSASS buffer overflow
2006-04-04 00:00:00
securityvulns
securityvulns
Microsoft Security Bulletin MS04-011
2004-04-14 00:00:00
openvas
openvas
Microsoft Windows MS04-011 Security Check
2009-03-15 00:00:00