Microsoft KB Archive/885835

= MS04-044: Vulnerabilities in Windows Kernel and LSASS could allow elevation of privilege =

Article ID: 885835

Article Last Modified on 2/6/2007

-

APPLIES TO


 * Microsoft Windows Server 2003, Datacenter Edition (32-bit x86)
 * Microsoft Windows Server 2003, Enterprise Edition (32-bit x86)
 * Microsoft Windows Server 2003, Standard Edition (32-bit x86)
 * Microsoft Windows Server 2003, Enterprise Edition for Itanium-based Systems
 * Microsoft Windows Server 2003, Datacenter Edition for Itanium-Based Systems
 * Microsoft Windows XP Professional for Itanium-based systems
 * Microsoft Windows XP Professional for Itanium-based systems
 * Microsoft Windows XP Professional
 * Microsoft Windows XP Home Edition
 * Microsoft Windows XP Tablet PC Edition 2005
 * Microsoft Windows XP Tablet PC Edition
 * Microsoft Windows XP Media Center Edition 2005
 * Microsoft Windows XP Media Center Edition 2002
 * Microsoft Windows 2000 Datacenter Server
 * Microsoft Windows 2000 Advanced Server
 * Microsoft Windows 2000 Server
 * Microsoft Windows 2000 Professional Edition
 * Microsoft Windows NT Server 4.0 Standard Edition
 * Microsoft Windows NT Server 4.0, Terminal Server Edition

-





Microsoft has released security bulletin MS04-44. This security bulletin contains all the relevant information about the security update, including file manifest information and deployment options. To view the complete security bulletin, visit one of the following Microsoft Web sites:

Consumers:

http://www.microsoft.com/athome/security/update/bulletins/default.mspx

IT professionals:

http://www.microsoft.com/technet/security/bulletin/ms04-044.mspx

Information for users of Microsoft Windows NT 4.0-based computers
If you install software updates to a Windows NT 4.0-based computer that has a system partition that is larger than 7.8 gigabytes (GB), your computer may not restart correctly.

For more information about general issues that may occur when you install software updates that replace the Ntoskrnl.exe file on a Windows NT 4.0-based computer, click the following article numbers to view the articles in the Microsoft Knowledge Base:

224526 Windows NT 4.0 supports maximum of 7.8-GB system partition

317050 &quot;Disk I/O Error: Status = 00000001&quot; error message occurs when you start the computer

Note You may experience this issue even if you have successfully installed earlier Ntoskrnl.exe file updates on computers with system partitions that are larger than 7.8 GB. To make sure that the files are located below the 7.8-GB boundary, some customers have successfully used third-party disk diagnostic utilities after installing the update but before restarting the computer. Additionally, some customers who have computers that can start from either Microsoft Windows 2000 or Microsoft Windows XP have used a feature of these computers to work around this issue. This feature lets the computer use the NTLDR and NTDETECT files from the version of Windows that supports a larger system boot partition.

Known issues
891531 Veritas Backup Exec version 8.6 scheduled backups fail with an application event ID:57480 after you install security update 885835 on a Windows 2000-based computer

Additional query words: update security_patch security_update security bug flaw vulnerability malicious attacker exploit registry unauthenticated buffer overrun overflow specially-formed scope specially-crafted denial of service DoS TSE WinNT Win2000

Keywords: kbbug kbfix kbsecvulnerability kbqfe kbsecurity kbwinnt400presp7fix kbsecbulletin kbwinxppresp2fix kbwin2000presp5fix kbwinserv2003presp1fix kbhotfixserver KB885835

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.