CVE-2011-1974

Name of the Vulnerable Software and Affected Versions Microsoft Windows XP versions SP2 through SP3 Microsoft Windows Server 2003 version SP2

Description An issue exists in the Remote Access Service NDISTAPI driver where it improperly validates user-supplied input when passing data from user mode to the Windows kernel. This allows a local attacker to execute arbitrary code and take complete control of an affected system, enabling them to install programs, view, change, or delete data, or create new accounts with full user rights.

Recommendations For Microsoft Windows XP versions SP2 through SP3, update to a version that includes the fix for this issue. For Microsoft Windows Server 2003 version SP2, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the NDISTAPI driver to minimize the risk of exploitation.