Affected Software:
Windows NT 4.0
Windows Server NT 4.0 Terminal Server Edition
Windows 2000
Windows XP
Windows Server 2003
There is a vulnerability in Authenticode that, under certain low memory conditions, could allow an ActiveX control to download & install without presenting the user with an approval dialog.