Peter Winter Smith

**Name of the Vulnerable Software and Affected Versions** Microsoft Windows versions prior to the fixed version **Description** The issue is related to a buffer overflow in the Winsock API, allowing remote attackers to execute arbitrary code. This can be achieved by forcing the user to open a specially crafted file or visit a malicious website that calls the affected Winsock API, potentially giving the attacker complete control of the affected system. **Recommendations** For Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1, update to a version that includes the fix for the Winsock API issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.