Title: Microsoft TSAC ActiveX Long Server Name Overflow
Aug 28, 2002
A Local overflow exists in Microsoft Terminal Services Advanced Client. The ActiveX Control fails to check for long server names resulting in a buffer overflow. With a specially crafted request, an attacker can cause code execution in the context of the user who has the Advanced Client on their system resulting in a loss of confidentiality and integrity.
Remote / Network Access,
Loss of Confidentiality,
Loss of Integrity
Upgrade to Windows XP Service Pack 1 or higher, as it has been reported to fix this vulnerability. It is also possible to correct the flaw by implementing the following workaround(s): Downloading the updated Terminal Services Advanced Client from Microsoft and install it on the web server hosting the terminal services session.