MS03-044: Buffer overrun in Windows Help and Support Center could lead to system compromise

Support for Windows XP has ended

Microsoft ended support for Windows XP on April 8, 2014. This change has affected your software updates and security options. Learn what this means for you and how to stay protected.

Support for Windows Server 2003 ended on July 14, 2015

Microsoft ended support for Windows Server 2003 on July 14, 2015. This change has affected your software updates and security options. Learn what this means for you and how to stay protected.

This article has been archived. It is offered "as is" and will no longer be updated.
Microsoft has released security bulletin MS03-044. The security bulletin contains all the relevant information about the security patch, including file manifest information and deployment options. To view the complete security bulletin, visit the following Microsoft Web site:For additional information about the latest service pack for Windows XP, click the following article number to view the article in the Microsoft Knowledge Base:
322389 How to obtain the latest Windows XP service pack
security_patch security bug context flaw vulnerability malicious attacker exploit registry unauthenticated buffer overrun overflow Remote Code Execution Help and Support Center function hcp protocol unchecked buffer Local Computer URL specially-formed scope link hyperlink specially-crafted 2000 TSE 2003 WinME WinNT Win2000 4.0 Itircl.dll Witircl.dll
Properties

Article ID: 825119 - Last Review: 02/27/2014 21:19:35 - Revision: 5.6

Microsoft Windows NT Server 4.0 Standard Edition, Microsoft Windows NT Server 4.0, Terminal Server Edition, Microsoft Windows NT Workstation 4.0 Developer Edition, Microsoft Windows 2000 Advanced Server, Microsoft Windows 2000 Server, Microsoft Windows 2000 Datacenter Server, Microsoft Windows 2000 Professional Edition, Microsoft Windows XP Tablet PC Edition, Microsoft Windows XP Media Center Edition, Microsoft Windows XP Home Edition, Microsoft Windows XP Professional, Microsoft Windows Server 2003, Standard Edition (32-bit x86), Microsoft Windows Server 2003, Enterprise Edition (32-bit x86), Microsoft Windows Server 2003, Enterprise x64 Edition, Microsoft Windows Millennium Edition, Microsoft Windows Server 2003, Datacenter Edition (32-bit x86)

  • kbnosurvey kbarchive kbhotfixserver kbqfe atdownload kbwinxpsp2fix kbsecurity kbsecbulletin kbsecvulnerability kbwinxppresp2fix kbbug kbfix kbwinserv2003presp1fix kbwin2000presp5fix kbwinnt400presp7fix KB825119
Feedback