You are currently offline, waiting for your internet to reconnect

MS08-066: Vulnerability in the Microsoft Ancillary Function driver could allow elevation of privilege

Support for Windows XP has ended

Microsoft ended support for Windows XP on April 8, 2014. This change has affected your software updates and security options. Learn what this means for you and how to stay protected.

Support for Windows Server 2003 ended on July 14, 2015

Microsoft ended support for Windows Server 2003 on July 14, 2015. This change has affected your software updates and security options. Learn what this means for you and how to stay protected.

INTRODUCTION
Microsoft has released security bulletin MS08-066. To view the complete security bulletin, visit one of the following Microsoft Web sites:

How to obtain help and support for this security update

Help installing updates: Support for Microsoft Update

Security solutions for IT professionals: TechNet Security Troubleshooting and Support

Help protect your computer that is running Windows from viruses and malware:Virus Solution and Security Center

Local support according to your country: International Support

Known issue with this security update

After you install this security update on a Windows XP-based computer or on a Windows Server 2003-based computer that is running ZoneAlarm, you may be unable to connect to the Internet.

This issue may occur when you run the ZoneAlarm versions that are listed in the following table.
ApplicationVersion number range
Zone Alarm Internet Security Suite6.5.645.000–7.0.482.000
Zone Alarm Pro6.5.645.000–7.0.482.000
Zone Alarm Anti Virus6.5.645.000–7.0.482.000
Zone Alarm Anti-Spyware6.5.645.000–7.0.482.000
Zone Alarm Basic Firewall6.5.645.000–7.0.482.000
EndPoint Security6.5.645.000–7.0.865.000 (excluding 7.0.843.0007 and 7.0.866.000)
To resolve this issue, install update 958752.

For more information, click the following article number to view the article in the Microsoft Knowledge Base:
958752 The version of AFD.SYS that is released together with security update 956189 (MS08-037) and security update 956803 (MS08-066) has an application compatibility issue

File information

The English (United States) version of this software update installs files that have the attributes that are listed in the following tables. The dates and times for these files are listed in Coordinated Universal Time (UTC). The dates and times for these files on your local computer are displayed in your local time and with your current daylight saving time (DST) bias. Additionally, the dates and times may change when you perform certain operations on the files.

Windows XP and Windows Server 2003 file information notes

  • The files that apply to a specific milestone (RTM, SPn) and service branch (QFE, GDR) are noted in the "SP requirement" and "Service branch" columns.
  • GDR service branches contain only those fixes that are widely released to address widespread, critical issues. QFE service branches contain hotfixes in addition to widely released fixes.
  • In addition to the files that are listed in these tables, this software update also installs an associated security catalog file (KBnumber.cat) that is signed with a Microsoft digital signature.
For all supported x86-based versions of Windows XP
File nameFile versionFile sizeDateTimePlatformSP requirementService branch
Afd.sys5.1.2600.3427138,36814-Aug-200809:51x86SP2SP2GDR
Afd.sys5.1.2600.3427138,36814-Aug-200809:48x86SP2SP2QFE
Afd.sys5.1.2600.5657138,49614-Aug-200810:04x86SP3SP3GDR
Afd.sys5.1.2600.5657138,49614-Aug-200810:34x86SP3SP3QFE
For all supported x64-based versions of Windows Server 2003 and Windows XP Professional x64 edition
File nameFile versionFile sizeDateTimePlatformSP requirementService branch
Afd.sys5.2.3790.3192299,00815-Aug-200801:31x64SP1SP1GDR
Afd.sys5.2.3790.3192299,52015-Aug-200801:31x64SP1SP1QFE
Afd.sys5.2.3790.4355291,84015-Aug-200801:36x64SP2SP2GDR
Afd.sys5.2.3790.4355292,35215-Aug-200801:31x64SP2SP2QFE
For all supported x86-based versions of Windows Server 2003
File nameFile versionFile sizeDateTimePlatformSP requirementService branch
Afd.sys5.2.3790.3192150,52814-Aug-200809:51x86SP1SP1GDR
Afd.sys5.2.3790.3192153,08814-Aug-200810:17x86SP1SP1QFE
Afd.sys5.2.3790.4355150,52814-Aug-200810:48x86SP2SP2GDR
Afd.sys5.2.3790.4355150,52814-Aug-200811:08x86SP2SP2QFE
For all supported IA-64-based versions of Windows Server 2003
File nameFile versionFile sizeDateTimePlatformSP requirementService branch
Afd.sys5.2.3790.3192582,65615-Aug-200801:31IA-64SP1SP1GDR
Afd.sys5.2.3790.3192584,19215-Aug-200801:31IA-64SP1SP1QFE
Afd.sys5.2.3790.4355583,68015-Aug-200801:35IA-64SP2SP2GDR
Afd.sys5.2.3790.4355584,19215-Aug-200801:31IA-64SP2SP2QFE
The third-party products that this article discusses are manufactured by companies that are independent of Microsoft. Microsoft makes no warranty, implied or otherwise, about the performance or reliability of these products.
windowsxp winxp windowsserver2003 windowsserver2k3 winsvr2003 winsvr2k3 update security_patch security_update security bug flaw vulnerability malicious attacker exploit registry unauthenticated buffer overrun overflow specially-formed scope specially-crafted denial of service DoS
Properties

Article ID: 956803 - Last Review: 05/09/2012 17:21:00 - Revision: 5.0

  • Microsoft Windows Server 2003 Service Pack 1
  • Microsoft Windows Server 2003, Datacenter x64 Edition
  • Microsoft Windows Server 2003, Enterprise x64 Edition
  • Microsoft Windows Server 2003, Standard x64 Edition
  • Microsoft Windows XP Professional x64 Edition
  • Microsoft Windows Server 2003 Service Pack 2
  • Microsoft Windows XP Service Pack 2
  • Microsoft Windows XP Service Pack 3
  • kbfix kbbug kbsecvulnerability kbsecbulletin kbsecurity kbqfe kbexpertisebeginner KB956803
Feedback