MS03-043: Buffer Overrun in Messenger Service (828035) (uncredentialed check)
Critical Nessus Plugin ID 11890
SynopsisArbitrary code can be executed on the remote host.
DescriptionA security vulnerability exists in the Messenger Service that could allow arbitrary code execution on an affected system. An attacker who successfully exploited this vulnerability could be able to run code with Local System privileges on an affected system or could cause the Messenger Service to fail.
Disabling the Messenger Service will prevent the possibility of attack.
This plugin actually tests for the presence of this flaw.
SolutionMicrosoft has released a set of patches for Windows NT, 2000, XP and 2003.