CVE-2011-1868

Name of the Vulnerable Software and Affected Versions Microsoft Windows XP versions SP2 through SP3 Microsoft Windows Server 2003 version SP2

Description The Distributed File System (DFS) implementation does not properly validate fields in DFS responses, allowing remote DFS servers to execute arbitrary code via a crafted response. An unauthenticated remote code execution issue exists in the way the DFS client parses specially crafted DFS responses. This could allow an attacker to execute arbitrary code and take complete control of an affected system, enabling them to install programs, view, change, or delete data, or create new accounts with full user rights.

Recommendations For Microsoft Windows XP versions SP2 through SP3, update to a version that includes the fix for the DFS Memory Corruption issue. For Microsoft Windows Server 2003 version SP2, apply the necessary patch to resolve the DFS client parsing vulnerability.