http://www.microsoft.com/technet/sec.../ms06-040.mspx
This update resolves a privately disclosed vulnerability as well as additional issues discovered through internal investigations.
An attacker who successfully exploited the vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
We recommend that customers apply the update immediately
Vulnerability Identifiers Impact of Vulnerability Windows 2000 Windows XP Service Pack 1 Windows XP Service Pack 2 Windows Server 2003 Windows Server 2003 Service Pack 1
Buffer Overrun in Server Service Vulnerability - CVE-2006-3439
Remote Code Execution
Critical
Critical
Critical
Critical
Critical
Aggregate Severity of All Vulnerabilities
Critical
Critical
Critical
Critical
Critical
This update resolves a privately disclosed vulnerability as well as additional issues discovered through internal investigations.
An attacker who successfully exploited the vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
We recommend that customers apply the update immediately
Vulnerability Identifiers Impact of Vulnerability Windows 2000 Windows XP Service Pack 1 Windows XP Service Pack 2 Windows Server 2003 Windows Server 2003 Service Pack 1
Buffer Overrun in Server Service Vulnerability - CVE-2006-3439
Remote Code Execution
Critical
Critical
Critical
Critical
Critical
Aggregate Severity of All Vulnerabilities
Critical
Critical
Critical
Critical
Critical
Comment