CVE-2010-3963

Name of the Vulnerable Software and Affected Versions Microsoft Windows XP versions SP2 through SP3 Microsoft Windows Server 2003 version SP2

Description The issue is related to a buffer overflow in the Routing and Remote Access NDProxy component of the Windows kernel, caused by improper copying from user mode to the kernel. This is due to improper validation of input passed from user mode to the kernel. A local attacker could exploit this to run code with elevated privileges, execute arbitrary code, and take complete control of an affected system.

Recommendations For Microsoft Windows XP versions SP2 through SP3, update to a version that includes the fix for the kernel NDProxy buffer overflow issue. For Microsoft Windows Server 2003 version SP2, update to a version that includes the fix for the kernel NDProxy buffer overflow issue. As a temporary workaround, consider restricting access to the Routing and Remote Access service (RRAS) to minimize the risk of exploitation.