Reported January 11, 2005, by Microsoft


VERSIONS AFFECTED

  • Windows Server 2003

  • Windows XP

  • Windows 2000


DESCRIPTION

A vulnerability in the way Windows Indexing Service handles query validation could allow an intruder to gain control over a user's system or cause a Denial of Service (DoS) attack.

VENDOR RESPONSE

Microsoft has issued Security Bulletin MS05-003, “Vulnerability in the Indexing Service Could Allow Remote Code Execution (871250),” to address this critical issue.