KLA11056
Multiple arbitrary code execution vulnerabilities in Microsoft Windows
Updated: 06/26/2019
Detect date
?
06/15/2017
Severity
?
Critical
Description

Multiple serious vulnerabilities have been found in Microsoft Windows XP and Microsoft Windows Server 2003. Malicious users can exploit these vulnerabilities to execute arbitrary code.

Below is a complete list of vulnerabilities:

  1. An improper validation of user input in Windows OLE can be exploited remotely via a specially designed file or program to execute arbitrary code;
  2. An incorrect way of handling requests done by the Routing and Remote Access service can be exploited remotely via a specially designed application to execute arbitrary code.
Affected products

Microsoft Windows XP
Microsoft Windows Server 2003

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories

Description of the security update of Windows XP and Windows Server 2003
Description of the security update of Windows XP and Windows Server 2003

Impacts
?
ACE 
[?]
Related products
Microsoft Windows Server 2003
Microsoft Windows XP
CVE-IDS
?
CVE-2017-84879.3Critical
CVE-2017-84616.9High