UpdatesDescription: This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow denial of service if an attacker sent a maliciously crafted packet during the NTLM authentication process. The security update addresses the vulnerability by implementing additional validation of specific value sets used in the authentication process.

Update type: Important

Release date: October 13, 2009

Applies to: All versions

Knowledge base: http://support.microsoft.com/kb/975467

Download link: 32-bit | 64-bit
Comments:Here are the specifics on the vulnerabilities covered by this update:

  • Local Security Authority Subsystem Service Integer Overflow Vulnerability – CVE-2009-2524

Leave a Reply