Affected Software:
Windows NT
Windows Server NT 4.0 Terminal Server Edition
Windows 2000
Windows XP
Windows Server 2003

A security vulnerability exists in the Messenger Service that could allow arbitrary code execution on an affected system. The vulnerability results because the Messenger Service does not properly validate the length of a message before passing it to the allocated buffer.

Download Patch Now