| Patch Name : |
Windows2000-KB917159-x86-ENU.EXE |
| Patch Description : |
Security Update for Windows 2000 (KB917159) |
| Bulletin Id : |
MS06-035 |
| Bulletin Title : |
Vulnerability in Server Service Could Allow Remote Code Execution (917159) |
| KnowledgeBase : | 917159 |
| Severity : |
Critical |
| Location Path : | Windows2000-KB917159-x86-ENU.EXE |
| Bulletin Summary: |
Mailslot Heap Overflow Vulnerability:
There is a remote code execution vulnerability in the Server driver that could allow an attacker who successfully exploited this vulnerability to take complete control of the affected system.
SMB Information Disclosure Vulnerability:
There is an information disclosure vulnerability in the Server service that could allow an attacker to view fragments of memory used to store SMB traffic during transport. |
| Superceding Bulletin Id : |
MS06-063 |
| Patch Release Date : |
Jul 11, 2006 |
| CVE Id : | CVE-2006-1314 |
| Affected Product Information |
|
| Product Name |
Service Pack Name |
| Windows 2000 Advanced Server | Windows 2000 Service Pack 4 |
| Windows 2000 Professional | Windows 2000 Service Pack 4 |
| Windows 2000 Server | Windows 2000 Service Pack 4 |
|
| File changes |
|
| File Path |
Version |
| %windir%\system32\drivers\Srv.sys | 5.0.2195.7087 |
|
| Registry changes |
|
| Registry Path |
Key Name |
Key Value |
| HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows 2000\SP5\KB917159 | | -2 |
|
