• Microsoft Windows 2000 Service Pack 4
• Microsoft Windows Server 2003 Service Pack 1
• Microsoft Windows Server 2003 Service Pack 2
• Microsoft Windows Server 2003 with SP1 for Itanium-based Systems
• Microsoft Windows Server 2003 with SP2 for Itanium-based Systems
• Microsoft Windows Server 2003 x64 Edition
• Microsoft Windows Server 2003 x64 Edition Service Pack 2
• Microsoft Windows XP Professional x64 Edition
• Microsoft Windows XP Professional x64 Edition Service Pack 2
• Microsoft Windows XP Service Pack 2
• Microsoft Windows XP Service Pack 3
• Windows Server 2008 for 32-bit Systems
• Windows Server 2008 for Itanium-based Systems
• Windows Server 2008 for x64-based Systems
• Windows Vista
• Windows Vista Service Pack 1
• Windows Vista x64 Edition
• Windows Vista x64 Edition Service Pack 1

This security update resolves a privately reported vulnerability in the Server service. This vulnerability could allow remote code execution if an affected system received a specially-crafted RPC request.

This vulnerability may be used by malicious users in the crafting of a wormable exploit. It is recommended to observe firewall best practices and standard default firewall configurations to protect network resources from attacks exploiting this vulnerability.

Patches for this vulnerability can be downloaded on this Microsoft Web page.

Disabling the Computer Browser and Server service on the affected systems will help protect systems from remote attempts to exploit this vulnerability. Additionally, Microsoft recommends blocking TCP ports 139 and 445 at the firewall, as these ports are used to initiate a connection with the affected component. Blocking all unsolicited inbound communication from the Internet may help prevent attacks that use other ports.

Microsoft also advises to use a personal firewall to help protect from network-based attempts to exploit this vulnerability.

More details regarding these workarounds may be found on this Microsoft Web page.