DOCUMENT:Q154087 TITLE :Access Violation in LSASS.EXE Due to Incorrect Buffer Size PRODUCT :Microsoft Windows NT PROD/VER:4.00 OPER/SYS:WINDOWS KEYWORDS:kbbug4.00 kberrmsg kbfile kbfix4.00 ntsecurity NTSrvWkst ntstop -------------------------------------------------------------------------- The information in this article applies to: - Microsoft Windows NT Workstation version 4.0 Service Pack 3 - Microsoft Windows NT Server version 4.0 Service Pack 3 -------------------------------------------------------------------------- SYMPTOMS ======== While running Windows NT, you may receive an Access Violation error message in Lsass.exe. After this error occurs, you cannot logon locally and the administrative tools that rely on LSA/LSARPC (such as Event Viewer and Server Manager) do not function. CAUSE ===== The failure occurs when a remote client connects to the Local Security Authority over a named pipe and passes an incorrect buffer size (fragment length). RESOLUTION ========== Microsoft has updated Lsasrv.dll to correct this problem and posted the updated version to the following Internet location: NOTE: Service Pack 3 must be applied to Windows NT 4.0 prior to applying this fix. ftp://ftp.microsoft.com/bussys/winnt/winnt-public/fixes/cze/NT40/ hotfixes-postSP3/lsa-fix STATUS ====== Microsoft has confirmed this to be a problem in Windows NT version 4.0. A supported fix is now available, but has not been fully regression-tested and should be applied only to systems experiencing this specific problem. Unless you are severely impacted by this specific problem, Microsoft recommends that you wait for the next Service Pack that contains this fix. Contact Microsoft Technical Support for more information. Additional query words: prodnt 4.00 ============================================================================ THE INFORMATION PROVIDED IN THE MICROSOFT KNOWLEDGE BASE IS PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. MICROSOFT DISCLAIMS ALL WARRANTIES, EITHER EXPRESS OR IMPLIED, INCLUDING THE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. IN NO EVENT SHALL MICROSOFT CORPORATION OR ITS SUPPLIERS BE LIABLE FOR ANY DAMAGES WHATSOEVER INCLUDING DIRECT, INDIRECT, INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL DAMAGES, EVEN IF MICROSOFT CORPORATION OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES SO THE FOREGOING LIMITATION MAY NOT APPLY.