You are currently offline, waiting for your internet to reconnect

MS06-077: Vulnerability in Remote Installation Services could allow remote code execution

This article has been archived. It is offered "as is" and will no longer be updated.
SUMMARY
Microsoft has released security bulletin MS06-077. The security bulletin contains all the relevant information about the security update. This information includes file manifest information and deployment options. To view the complete security bulletin, visit one of the following Microsoft Web sites:

Known issues

Remote Installation Services (RIS) is an optional component in Microsoft Windows 2000. Windows Update offers this security update only if the RIS component is installed on the computer.

For example, assume that you download this security update from the Microsoft Download Center and then manually install the security update on a Windows 2000-based computer that is not running RIS. In this case, you would receive an error message that states that a prerequisite is missing and that the security update will not be installed. If you use a script or a third-party tool to deploy the security update and if this script or tool includes logic to suppress default pop-up errors, the error message will be displayed. This is expected behavior.
security_patch security_update bug flaw malicious attacker exploit registry unauthenticated buffer overrun overflow specially-formed scope specially-crafted denial of service DoS TSE Win2000
Properties

Article ID: 926121 - Last Review: 10/21/2013 19:05:40 - Revision: 1.2

Microsoft Windows 2000 Service Pack 4, Microsoft Small Business Server 2000 Standard Edition

  • kbnosurvey kbarchive kbwinserv2003sp2fix kbexpertiseinter kbexpertisebeginner kbqfe kbsecurity kbsecbulletin kbsecvulnerability kbbug kbfix kbwin2000presp5fix kbpubtypekc KB926121
Feedback