MS04-011: Security Update for Microsoft Windows (835732) (uncredentialed check)
Critical Nessus Plugin ID 12209
SynopsisArbitrary code can be executed on the remote host due to a flaw in the LSASS service.
DescriptionThe remote version of Windows contains a flaw in the function 'DsRolerUpgradeDownlevelServer' of the Local Security Authority Server Service (LSASS) that allows an attacker to execute arbitrary code on the remote host with SYSTEM privileges.
A series of worms (Sasser) are known to exploit this vulnerability in the wild.
SolutionMicrosoft has released a set of patches for Windows NT, 2000, XP and 2003.