CVE-2012-2526

Name of the Vulnerable Software and Affected Versions Microsoft Windows XP SP3

Description A remote code execution issue exists due to improper processing of packets in memory by the Remote Desktop Protocol (RDP) implementation. This allows remote attackers to execute arbitrary code by sending crafted RDP packets, triggering access to a deleted object. An attacker who successfully exploits this issue could run arbitrary code on the target system, potentially installing programs, viewing, changing, or deleting data, or creating new accounts with full user rights.

Recommendations For Microsoft Windows XP SP3, at the moment, there is no information about a newer version that contains a fix for this vulnerability.