Title: Buffer Overrun in Messenger Service Could Allow Code Execution
(828035)

Date: October 15, 2003

Software:
Microsoft Windows NT Server 4.0
Microsoft Windows NT 4.0 Workstation
Microsoft Windows NT Server 4.0, Terminal Server Edition
Microsoft Windows XP
Microsoft Windows 2000
Microsoft Windows Server 2003

Impact: Allow attacker to execute arbitrary code.

Maximum Severity Rating: CRITICAL

Bulletin: MS03-043

The Microsoft Security Response Center has released Microsoft
Security Bulletin MS03-043

What Is It?
The Microsoft Security Response Center has released Microsoft
Security Bulletin MS03-043 which concerns a vulnerability in products
listed above.  Customers are advised to review the information in the
bulletin, test and deploy the patch immediately in their
environments, if applicable.

More information is now available at
http://www.microsoft.com/technet/security/bulletin/MS03-043.asp

If you have any questions regarding the patch or its implementation
after reading the above listed bulletin you should contact Product
Support Services in the United States at 1-866-PCSafety
(1-866-727-2338).  International customers should contact their local
subsidiary.