• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Microsoft ListBox/ComboBox Control User32.dll Function Buffer Overrun Vulnerability

Solution:
Microsoft has released a patch that will address this issue.

Microsoft has released updated information concerning Microsoft Security Bulletin MS03-045. Microsoft has reported that a compatibility problem with an unspecified third party software has been identified with a set of language specific versions of the Windows 2000 Service Pack 4 patch. However, this problem is unrelated to the security vulnerability discussed in MS03-045. Customers who have applied the patch are protected against the vulnerability discussed in this bulletin. The vendor has released new information to reflect the availability of the updated patch for specific languages. Please see the referenced Microsoft Security Bulletin MS03-045 for more information.

Revision 2.0 of the bulletin was also released to provide updated patches for Windows XP to address an unrelated problem with Debug Programs (SeDebugPrivilege). These patches can be found in the same location as the initial patches. Please see the updated bulletin for further details.


Microsoft Windows 2000 Server SP2

• Microsoft Security Update for Microsoft Windows 2000 Service Pack 2: KB824141
  http://www.microsoft.com/downloads/details.aspx?FamilyId=01358EAC-F1C5 -4CB7-BE3D-64459F4AD3FD&displaylang=en

Microsoft Windows 2000 Advanced Server SP2

• Microsoft Security Update for Microsoft Windows 2000 Service Pack 2: KB824141
  http://www.microsoft.com/downloads/details.aspx?FamilyId=01358EAC-F1C5 -4CB7-BE3D-64459F4AD3FD&displaylang=en

Microsoft Windows NT Server 4.0 SP6a

• Microsoft Security Update for Microsoft Windows NT Server 4.0: KB824141
  http://www.microsoft.com/downloads/details.aspx?FamilyId=F3E87075-AAE5 -49F4-9D37-24A116296188&displaylang=en

Microsoft Windows Server 2003 Enterprise Edition Itanium 0

• Microsoft Security Update for Microsoft Windows Server 2003 64-bit Edition: KB824141
  http://www.microsoft.com/downloads/details.aspx?FamilyId=E4BD7C05-EA0E -49C7-9BDD-ABB496CA87CA&displaylang=en

Microsoft Windows NT Terminal Server 4.0 SP6

• Microsoft Security Update for Microsoft Windows NT Server Terminal Server Edition: KB824141
  http://www.microsoft.com/downloads/details.aspx?FamilyId=0ADC8D90-2355 -49A0-976B-57281B4521C1&displaylang=en

Microsoft Windows Server 2003 Standard Edition

• Microsoft Security Update for Microsoft Windows Server 2003: KB824141
  http://www.microsoft.com/downloads/details.aspx?FamilyId=02F97DE4-29DF -4D33-A33B-E7630349E69E&displaylang=en

Microsoft Windows Server 2003 Datacenter Edition Itanium 0

• Microsoft Security Update for Microsoft Windows Server 2003 64-bit Edition: KB824141
  http://www.microsoft.com/downloads/details.aspx?FamilyId=E4BD7C05-EA0E -49C7-9BDD-ABB496CA87CA&displaylang=en

Microsoft Windows NT Workstation 4.0 SP6a

• Microsoft Security Update for Microsoft Windows NT Workstation 4.0: KB824141
  http://www.microsoft.com/downloads/details.aspx?FamilyId=5EA88ABE-8D53 -4E25-959C-E80EB5FD7A91&displaylang=en

Microsoft Windows XP 64-bit Edition SP1

• Microsoft Security Update for Microsoft Windows XP 64-bit Edition: KB824141
  http://www.microsoft.com/downloads/details.aspx?FamilyId=3E7B03BF-2231 -4069-B76F-0BD69CF6E1D9&displaylang=en

Microsoft Windows Server 2003 Datacenter Edition

• Microsoft Security Update for Microsoft Windows Server 2003: KB824141
  http://www.microsoft.com/downloads/details.aspx?FamilyId=02F97DE4-29DF -4D33-A33B-E7630349E69E&displaylang=en

Microsoft Windows 2000 Advanced Server SP4

• Microsoft Security Update for Microsoft Windows 2000: KB824141
  http://www.microsoft.com/downloads/details.aspx?FamilyId=379F234D-CE7E -4897-8D29-0764997F1E42&displaylang=en

Microsoft Windows 2000 Professional SP3

• Microsoft Security Update for Microsoft Windows 2000: KB824141
  http://www.microsoft.com/downloads/details.aspx?FamilyId=379F234D-CE7E -4897-8D29-0764997F1E42&displaylang=en

Microsoft Windows Server 2003 Enterprise Edition

• Microsoft Security Update for Microsoft Windows Server 2003: KB824141
  http://www.microsoft.com/downloads/details.aspx?FamilyId=02F97DE4-29DF -4D33-A33B-E7630349E69E&displaylang=en

Microsoft Windows 2000 Professional SP2

• Microsoft Security Update for Microsoft Windows 2000 Service Pack 2: KB824141
  http://www.microsoft.com/downloads/details.aspx?FamilyId=01358EAC-F1C5 -4CB7-BE3D-64459F4AD3FD&displaylang=en

Microsoft Windows 2000 Datacenter Server SP4

• Microsoft Security Update for Microsoft Windows 2000: KB824141
  http://www.microsoft.com/downloads/details.aspx?FamilyId=379F234D-CE7E -4897-8D29-0764997F1E42&displaylang=en

Microsoft Windows Server 2003 Web Edition

• Microsoft Security Update for Microsoft Windows Server 2003: KB824141
  http://www.microsoft.com/downloads/details.aspx?FamilyId=02F97DE4-29DF -4D33-A33B-E7630349E69E&displaylang=en

Microsoft Windows 2000 Advanced Server SP3

• Microsoft Security Update for Microsoft Windows 2000: KB824141
  http://www.microsoft.com/downloads/details.aspx?FamilyId=379F234D-CE7E -4897-8D29-0764997F1E42&displaylang=en

Microsoft Windows XP Embedded SP1

• Microsoft Security Update for Microsoft Windows XP: KB824141
  http://www.microsoft.com/downloads/details.aspx?FamilyId=ABC764AC-5B7B -4B99-BF3E-F57352E4C507&displaylang=en

Microsoft Windows XP Home SP1

• Microsoft Security Update for Microsoft Windows XP: KB824141
  http://www.microsoft.com/downloads/details.aspx?FamilyId=ABC764AC-5B7B -4B99-BF3E-F57352E4C507&displaylang=en

Microsoft Windows 2000 Datacenter Server SP3

• Microsoft Security Update for Microsoft Windows 2000: KB824141
  http://www.microsoft.com/downloads/details.aspx?FamilyId=379F234D-CE7E -4897-8D29-0764997F1E42&displaylang=en

Microsoft Windows 2000 Server SP3

• Microsoft Security Update for Microsoft Windows 2000: KB824141
  http://www.microsoft.com/downloads/details.aspx?FamilyId=379F234D-CE7E -4897-8D29-0764997F1E42&displaylang=en

Microsoft Windows XP 64-bit Edition Version 2003

• Microsoft Security Update for Microsoft Windows Server 2003 64-bit Edition: KB824141
  http://www.microsoft.com/downloads/details.aspx?FamilyId=E4BD7C05-EA0E -49C7-9BDD-ABB496CA87CA&displaylang=en

Microsoft Windows XP 64-bit Edition

• Microsoft Security Update for Microsoft Windows XP 64-bit Edition: KB824141
  http://www.microsoft.com/downloads/details.aspx?FamilyId=3E7B03BF-2231 -4069-B76F-0BD69CF6E1D9&displaylang=en

Microsoft Windows 2000 Datacenter Server SP2

• Microsoft Security Update for Microsoft Windows 2000 Service Pack 2: KB824141
  http://www.microsoft.com/downloads/details.aspx?FamilyId=01358EAC-F1C5 -4CB7-BE3D-64459F4AD3FD&displaylang=en

Microsoft Windows 2000 Server SP4

• Microsoft Security Update for Microsoft Windows 2000: KB824141
  http://www.microsoft.com/downloads/details.aspx?FamilyId=379F234D-CE7E -4897-8D29-0764997F1E42&displaylang=en

Microsoft Windows 2000 Professional SP4

• Microsoft Security Update for Microsoft Windows 2000: KB824141
  http://www.microsoft.com/downloads/details.aspx?FamilyId=379F234D-CE7E -4897-8D29-0764997F1E42&displaylang=en

Microsoft Windows XP Professional SP1

• Microsoft Security Update for Microsoft Windows XP: KB824141
  http://www.microsoft.com/downloads/details.aspx?FamilyId=ABC764AC-5B7B -4B99-BF3E-F57352E4C507&displaylang=en