Patch Repository

Windows Server 2008 Standard Edition without Hyper-V Patch Details
Patch Name Windows6.0-2008-KB971657-x86.msu
Patch Description Security Update for Windows Server 2008 (KB971657)
Bulletin Id MS09-041
Bulletin Title Vulnerability in Workstation Service Could Allow Elevation of Privilege (971657)
Severity Moderate
Location Path Windows6.0-2008-KB971657-x86.msu
Bulletin Summary This security update resolves a privately reported vulnerability in the Windows Workstation Service. The vulnerability could allow elevation of privilege if an attacker created a specially crafted RPC message and sent the message to an affected system. An attacker who successfully exploited this vulnerability could execute arbitrary code and take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. An attacker must have valid logon credentials to a vulnerable system in order to exploit this vulnerability. The vulnerability could not be exploited by anonymous users.
Superceding Bulletin Id None
Patch Release Date Aug 11, 2009

Affected Product Information

Product Name Service Pack Name
Windows Server 2008 Standard EditionWindows Server 2008 SP1
Windows Server 2008 Enterprise EditionWindows Server 2008 SP1
Windows Server 2008 Datacenter EditionWindows Server 2008 SP1
Windows Server 2008 Foundation EditionWindows Server 2008 SP1
Windows Server 2008 Web Server EditionWindows Server 2008 SP1
Windows Server 2008 HPC EditionWindows Server 2008 SP1
Windows Server 2008 Datacenter Edition without Hyper-VWindows Server 2008 SP1
Windows Server 2008 Enterprise Edition without Hyper-VWindows Server 2008 SP1
Windows Server 2008 Standard Edition without Hyper-VWindows Server 2008 SP1
Windows Server 2008 Standard Edition without Hyper-v (core installation)Windows Server 2008 SP1
Windows Server 2008 Enterprise Edition without Hyper-v (core installation)Windows Server 2008 SP1

Disclaimer: This webpage is intended to provide you information about patch announcement for certain specific software products. The information is provided "As Is" without warranty of any kind. The links provided point to pages on the vendors websites. You can get more information by clicking the links to visit the relevant pages on the vendors website.