Microsoft KB Archive/899588

= MS05-039: Vulnerability in Plug and Play could allow remote code execution and elevation of privilege =

Article ID: 899588

Article Last Modified on 12/3/2007

-

APPLIES TO

 Microsoft Windows Server 2003, Enterprise Edition (32-bit x86) Microsoft Windows Server 2003, Web Edition Microsoft Windows Server 2003, Standard Edition (32-bit x86) Microsoft Windows Server 2003, Datacenter Edition (32-bit x86) Microsoft Windows Server 2003, Enterprise Edition for Itanium-based Systems Microsoft Windows Server 2003, Datacenter Edition for Itanium-Based Systems Microsoft Windows Server 2003, 64-Bit Datacenter Edition Microsoft Windows Server 2003, Enterprise x64 Edition</li> Microsoft Windows Server 2003 Service Pack 1, when used with: <ul> Microsoft Windows Server 2003, Web Edition</li></ul>

<ul> Microsoft Windows Server 2003, Standard Edition (32-bit x86)</li></ul>

<ul> Microsoft Windows Server 2003, Enterprise Edition (32-bit x86)</li></ul>

<ul> Microsoft Windows Server 2003, Datacenter Edition (32-bit x86)</li></ul>

<ul> Microsoft Windows Server 2003, Enterprise Edition for Itanium-based Systems</li></ul>

<ul> Microsoft Windows Server 2003, Datacenter Edition for Itanium-Based Systems</li></ul> </li> Microsoft Windows Small Business Server 2003 Standard Edition</li> Microsoft Windows Small Business Server 2003 Standard Edition, when used with: <ul> Microsoft Windows 2000 Service Pack 4</li></ul> </li> Microsoft Windows XP Service Pack 1, when used with: <ul> Microsoft Windows XP Professional</li></ul>

<ul> Microsoft Windows XP Home Edition</li></ul> </li> Microsoft Windows XP Service Pack 2, when used with: <ul> Microsoft Windows XP Professional</li></ul>

<ul> Microsoft Windows XP Home Edition</li></ul> </li> <li>Microsoft Windows XP Tablet PC Edition 2005</li> <li>Microsoft Windows XP Media Center Edition 2005</li> <li>Microsoft Windows XP Professional for Itanium-based systems</li> <li>Microsoft Windows XP Professional for Itanium-based systems</li> <li>Microsoft Windows 2000 Advanced Server</li> <li>Microsoft Windows 2000 Datacenter Server</li> <li>Microsoft Windows 2000 Professional Edition</li> <li>Microsoft Windows 2000 Service Pack 4</li></ul>

-

<div class="notice_section">

<div class="summary_section">

Microsoft has released security bulletin MS05-039. The security bulletin contains all the relevant information about the security update, including file manifest information and deployment options. To view the security bulletin, visit the following Microsoft Web sites: <ul> <li>Home users:

http://www.microsoft.com/athome/security/update/bulletins/200508.mspx

</li> <li>IT professionals:

http://www.microsoft.com/technet/security/bulletin/ms05-039.mspx

</li></ul>

Additional query words: update security_patch security_update security bug flaw vulnerability malicious attacker exploit registry unauthenticated buffer overrun overflow specially-formed scope specially-crafted denial of service DoS TSE WinNT Win2000 plug and play pnp

Keywords: kbwinserv2003sp2fix kbqfe kbsecurity kbsecbulletin kbsecvulnerability kbwinxppresp2fix kbbug kbfix kbwinserv2003presp1fix kbwin2000presp5fix kbwinnt400presp7fix kbpubtypekc kbhotfixserver KB899588

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.