Click Here to Install Silverlight*
United StatesChange|All Microsoft Sites
Microsoft
Download Center 
Search Advanced Search

Windows NT4 Security Patch: Index Server Search Function Contains Unchecked Buffer

Brief Description
Microsoft has released a patch that fixes a vulnerability in Index Server 2.0 which has an unchecked buffer in a function that processes search requests. If an overly long value were provided for a particular search parameter, it would overrun the buffer.

On This Page

Quick Details
File Name:Q294472i.exe
Version:q294472
Knowledge Base (KB) Articles:KB294472
Date Published:5/10/2001
Language:English
Download Size:751 KB
Estimated Download Time: 2 min 56K
Change Language:
  

Overview

Microsoft has released a patch that fixes a vulnerability in Index Server 2.0 which has an unchecked buffer in a function that processes search requests. If an overly long value were provided for a particular search parameter, it would overrun the buffer. If the buffer were overrun with random data, it would cause Index Service to fail. If it were overrun with carefully selected data, code of the attacker's choice could be made to run on the server, in the Local System security context.

 Top of page

System Requirements

  • Supported Operating Systems: Windows NT
Windows NT4.0 Server
Windows NT4.0 Server, Enterprise Edition
Index Server version 2.0

 Top of page

Instructions

To start the installation immediately, click Run this program from its current location.
To copy the download to your computer for installation at a later time, click Save this program to disk.
Click OK.

 Top of page

 Top of page

© 2009 Microsoft Corporation. All rights reserved. Contact Us |Terms of Use |Trademarks |Privacy Statement