Security Home > Windows NT, 2000 & XP

Unchecked Buffer in Locator Service New

A critical security vulnerability exists in the Microsoft Locator service which is part of the Windows NT, 2000 and XP operating system. The unchecked buffer could allow an attacker to run the code of their choice on the system.

Issue

The Microsoft Locator service is a name service that maps logical names to network-specific names. It ships with Windows NT 4.0, Windows 2000, and Windows XP. By default, the Locator service is enabled only on Windows 2000 domain controllers and Windows NT 4.0 domain controllers; it is not enabled on Windows NT 4.0 workstations or member servers, Windows 2000 workstations or member servers, or Windows XP.

A security vulnerability results from an unchecked buffer in the Locator service. By sending a specially malformed request to the Locator service, an attacker could cause the Locator service to fail, or to run code of the attacker's choice on the system.

Affected Products

  • Microsoft Windows NT 4.0
  • Microsoft Windows 2000
  • Microsoft Windows XP

Download

Patch: http://www.microsoft.com/technet/security/bulletin/MS03-001.asp

Further Details

Source: Microsoft Corporation

Reference: Microsoft Corporation

Updated: January 22, 2003

>> Recommended Download - secure your PC from spyware, adware and malware now with Spyware Doctor <<