Microsoft Windows Asynchronous Procedure Call Local Privilege Escalation Vulnerability
Avaya has released advisory ASA-2005-234 detailing affected Avaya products. Please see the referenced advisory for further information.
An advisory and fixes are available from the vendor:
Microsoft Windows 2000 Advanced Server SP4
Microsoft Windows 2000 Datacenter Server SP4
Microsoft Windows 2000 Server SP4