Reported December 14, 2004, by Microsoft

VERSIONS AFFECTED

·         Microsoft Windows NT Server 4.0 Service Pack 6a

·         Microsoft Windows NT Server 4.0 Terminal Server Edition Service Pack 6

·         Microsoft Windows 2000 Server Service Pack 3 and Service Pack 4

·         Microsoft Windows Server 2003

DESCRIPTION
Two new vulnerabilities exist in Microsoft WINS. The first vulnerability stems from a flaw in the way that WINS handles computer name validation.  The other vulnerability is in the way that WINS handles association context validation. An attacker could exploit these vulnerabilities by constructing a malicious network packet that could potentially allow remote code execution on an affected system.

VENDOR RESPONSE
Microsoft has released Security Bulletin MS04-045, "Vulnerability in WINS Could Allow Remote Code Execution (870763)," to address these vulnerabilities and recommends that affected users immediately apply the appropriate patch listed in the bulletin.

CREDIT
Discovered by Kostya Kortchinsky from CERT RENATER.