Microsoft Security Bulletin MS03-026

Buffer Overrun In RPC Interface Could Allow Code Execution

Affected Software:

Microsoft Windows NT® 4.0
Microsoft Windows NT 4.0 Terminal Services Edition
Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows Server™ 2003

Not Affected Software:

Microsoft Windows Millennium Edition

What’s the scope of the vulnerability?

This is a buffer overrun vulnerability. An attacker who successfully exploited this vulnerability could gain complete control over a remote computer. This would give the attacker the ability to take any action on the server that they want. For example, and attacker could change Web pages, reformat the hard disk, or add new users to the local administrators group.

To carry out such an attack, an attacker would require the ability to send a malformed message to the RPC service and thereby cause the target machine to fail in such a way that arbitrary code could be executed.

Patch availability

Download locations for this patch

Windows NT 4.0 Server

Windows NT 4.0 Terminal Server Edition

Windows 2000

Windows XP 32 bit Edition

Windows XP 64 bit Edition

Windows Server 2003 32 bit Edition

Windows Server 2003 64 bit Edition

Disclaimer:

The information provided is taken from the Microsoft Knowledge Base "as is" without warranty of any kind. Visit http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/MS03-026.asp for more details.