Key Details of Windows 2000 Malformed Event Record Vulnerability Patch

  • Fix a vulnerability in Windows 2000 that could allow a malicious user to run code on an affected machine.
  • Last updated on
  • There have been 1 updates
  • Also available on
  • Virus scan status:

    Clean (it's extremely likely that this software program is clean)


Developer's Description

Fix a vulnerability in Windows 2000 that could allow a malicious user to run code on an affected machine.
The Windows 2000 Event Viewer snap-in has an unchecked buffer in a section of the code that displays the detailed view of event records. If the event viewer attempted to display an event record that contained specially malformed data in one of the fields, either of two outcomes would result. In the less serious case, the event viewer would fail. In the more serious case, code of the attacker's choice could be made to run via a buffer overrun.

By design, unprivileged processes can log events in the System and Application logs, and interactively logged-on, unprivileged users can view them. However, only privileged processes can log events in the Security log, and only interactively logged-on administrators can view them. If the vulnerability were exploited to run code of the attacker's choice, the code would run in the security context of the user who viewed the affected record.



Explore More


Full Specifications

GENERAL
Release
Latest update
Version
ms01-013-2-26-01
OPERATING SYSTEMS
Platform
Windows
Operating System
  • Windows 2000
  • Windows 10
Additional Requirements
Windows 2000 Professional, Server, or Advanced Server
POPULARITY
Total Downloads
35,709
Downloads Last Week
0

Report Software

Program available in other languages


Related Software