Jean-Baptiste Marchand

**Name of the Vulnerable Software and Affected Versions** Microsoft Windows versions prior to Windows XP Service Pack 2 **Description** A stack-based buffer overflow issue in the Plug and Play service allows remote attackers to execute arbitrary code via a crafted packet. Local users can also gain privileges by using a malicious application. This issue has been exploited by the Zotob worm. **Recommendations** For Microsoft Windows 2000 and Windows XP Service Pack 1, update to a newer service pack or version to resolve the issue. As a temporary workaround, consider restricting access to the Plug and Play service to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: Windows NT 4.0 Windows 2000 before URP1 for Windows 2000 SP4 Description: The issue allows remote attackers to list Windows services via `svcctl` or read event logs via `eventlog` due to improper prevention of NULL sessions from accessing certain alternate named pipes. Recommendations: For Windows NT 4.0, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For Windows 2000 before URP1 for Windows 2000 SP4, apply the URP1 update for Windows 2000 SP4 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Windows XP versions SP1 through SP2 **Description** The issue allows remote attackers to obtain sensitive information, such as users who are accessing resources, via an anonymous logon using a named pipe. This is due to improper authentication in the Server service (srvsvc.dll). **Recommendations** For Windows XP versions SP1 and SP2, apply the necessary security patch to fix the Named Pipe Vulnerability.