MS09-069: Vulnerability in Local Security Authority Subsystem Service Could Allow Denial of Service (974392)
Medium Nessus Plugin ID 43061
SynopsisThe remote Windows host has a denial of service vulnerability.
DescriptionThe version of LSASS running on the remote host improperly handles specially crafted ISAKMP messages communicated through IPsec, causing the system to consume excessive amounts of CPU resources. A remote, authenticated attacker could exploit this to cause a denial of service.
SolutionMicrosoft has released a set of patches for Windows 2000, XP, and 2003.