Who should read this bulletin: Customers using Microsoft® Windows® ME or XP, or who have installed the Windows XP Internet Connection Sharing client on Windows 98 or 98SE.

Impact of vulnerability: Run code of attacker’s choice.


Go to :

http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/MS01-059.asp


For complete details.

tsunami--

This is not in Internet Connection Sharing (ICS) issue. It is a Universal Plug and Play (UPnP) problem with regards to buffer overruns.

The link is correct, though. I already posted this on another thread. I'll bump both of these threads because it doesn't seem that either of them are getting many reads.