CVE-2014-4076

Name of the Vulnerable Software and Affected Versions Microsoft Windows Server 2003 SP2

Description The issue is caused by the Windows TCP/IP stack failing to properly handle objects in memory during IOCTL processing, allowing an attacker to run arbitrary code in the context of another process. If the process runs with administrator privileges, an attacker could install programs, view, change, or delete data, or create new accounts with full user rights.

Recommendations For Microsoft Windows Server 2003 SP2, at the moment, there is no information about a newer version that contains a fix for this vulnerability.