TITLE: Microsoft Fix for Buffer Overrun in RPC Interface (Q824146) VERSION: 824146 Rev. SP1a DESCRIPTION: IMPORTANT: Workstations running Microsoft Windows XP with Service Pack 2 (SP2) do not require this fix. This package contains a Microsoft Windows XP and Windows 2000 fix for the listed workstation models. The issue and fix are explained in Microsoft Knowledge Base Article 824146, ''MS03-039: A buffer overrun in RPCSS could allow an attacker to run malicious programs.'' This package fixes vulnerabilities in Windows XP and Windows 2000 that could allow one of the following actions to occur: - An attacker could run malicious programs on the system. - A denial-of-service attack could be permitted. PURPOSE: Routine SOFTPAQ NUMBER: SP27842 SUPERSEDES: SP25186 EFFECTIVE DATE: November 1, 2004 CATEGORY: Operating System - Enhancements and QFEs SSM SUPPORTED: No PRODUCT TYPE(S): Workstations PRODUCT MODEL(S): HP Workstation xw3100: All Models HP Workstation xw4000: All Models HP Workstation xw4100: All Models HP Workstation xw4200: All Models HP Workstation xw5000: All Models HP Workstation xw6000: All Models HP Workstation xw6200: All Models HP Workstation xw8000: All Models HP Workstation xw8200: All Models OPERATING SYSTEM(S): Windows 2000 Windows XP Professional LANGUAGE(S): Chinese(PRC Simplified) Dutch French German Italian Japanese Korean Spanish Taiwanese Chinese US English ENHANCEMENTS: N/A FIXES: - Links directly to Microsoft website for latest update, obsoleting the previous SoftPaq SP25186. - Clarifies that this update affects both Windows 2000 and Windows XP. PREREQUISITES: N/A HOW TO USE: 1. Click the link and read the information from Microsoft about the patch (fix). 2. Complete one of the following actions to apply the fix to your workstation: (a) Update your workstation using the Microsoft Windows Update utility, or (b) Download the patch from the Microsoft ftp site and follow the installation instructions provided by Microsoft. Copyright (c) 2004 Hewlett-Packard Development Company, L.P.