10.286.2004 - MS04-036: Vulnerability in NNTP Could Allow Remote Code Execution (883935)

This update resolves a newly-discovered, privately reported vulnerability. A remote code execution vulnerability exists within the Network News Transfer Protocol (NNTP) component of the affected operating systems. This vulnerability could potentially affect systems that do not use NNTP. This is because some programs that are listed in the affected software section require that the NNTP component be enabled before you can install them. An attacker who successfully exploited this vulnerability could take complete control of an affected system, including installing programs; viewing, changing, or deleting data; or creating new accounts that have full privileges. - Download Windows NT Server SP6a Update - Download Windows 2000 SP3/SP4 Update - Download Windows Server 2003 Update - Download Windows Server 2003 64-bit Update - View Microsoft Security Bulletin MS04-036 - View Microsoft Knowledge Base Article - 883935 - Visit Microsoft Corporation