Reversemode

**Name of the Vulnerable Software and Affected Versions** Microsoft Windows XP SP2 Microsoft Windows XP Professional x64 Microsoft Windows XP x64 SP2 Microsoft Windows Server 2003 SP1 Microsoft Windows Server 2003 SP2 Microsoft Windows Server 2003 x64 Microsoft Windows Server 2003 x64 SP2 secdrv.sys version prior to 4.3.86.0 **Description** A buffer overflow issue exists in the Macrovision SafeDisc secdrv.sys driver, allowing local users to overwrite arbitrary memory locations and gain privileges via a crafted argument to a METHOD NEITHER IOCTL. **Recommendations** For Microsoft Windows XP SP2, update the secdrv.sys driver to version 4.3.86.0 or later. For Microsoft Windows XP Professional x64, update the secdrv.sys driver to version 4.3.86.0 or later. For Microsoft Windows XP x64 SP2, update the secdrv.sys driver to version 4.3.86.0 or later. For Microsoft Windows Server 2003 SP1, update the secdrv.sys driver to version 4.3.86.0 or later. For Microsoft Windows Server 2003 SP2, update the secdrv.sys driver to version 4.3.86.0 or later. For Microsoft Windows Server 2003 x64, update the secdrv.sys driver to version 4.3.86.0 or later. For Microsoft Windows Server 2003 x64 SP2, update the secdrv.sys driver to version 4.3.86.0 or later. As a temporary workaround, consider restricting access to the secdrv.sys driver until a patch is available.