Description
Multiple serious vulnerabilities have been found in Microsoft Windows XP and Microsoft Windows Server 2003. Malicious users can exploit these vulnerabilities to execute arbitrary code.
Below is a complete list of vulnerabilities:
- An improper validation of user input in Windows OLE can be exploited remotely via a specially designed file or program to execute arbitrary code;
- An incorrect way of handling requests done by the Routing and Remote Access service can be exploited remotely via a specially designed application to execute arbitrary code.
Original advisories
Description of the security update of Windows XP and Windows Server 2003
- Description of the security update of Windows XP and Windows Server 2003
Exploitation
Public exploits exist for this vulnerability.
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
Related products
CVE list
- CVE-2017-8487 critical
- CVE-2017-8461 high
KB list
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!