01.22.2003 - MS03-001: Unchecked Buffer in Locator Service Could Lead to Code Execution (810833)

The Microsoft Locator service is a name service that maps logical names to network-specific names. It is included with Windows NT 4.0, Windows 2000, and Windows XP. By default, the Locator service is enabled only on Windows 2000-based domain controllers and Windows NT 4.0-based domain controllers. The Locator service is not enabled on Windows NT 4.0-based workstations or member servers, Windows 2000-based workstations or member servers, or Windows XP. A security vulnerability results from an unchecked buffer in the Locator service. By sending a specially malformed request to the Locator service, an attacker might cause the Locator service to stop working, or to run code on your computer. - Download Windows NT 4.0 Patch - Download Windows NT 4.0 Terminal Server Edition Patch - Download Windows 2000 Patch - Download Windows XP Home/Professional Edition Patch - Download Windows XP 64 Bit Edition Patch - View Microsoft Security Bulletin MS03-001 - View End User Security Bulletin MS03-001 - View Microsoft Knowledge Base Article - 810833 - Visit Microsoft Corporation