Description: Kostya Kortchinsky has reported two vulnerabilities in Microsoft Windows, allowing malicious people to compromise a vulnerable system.
1) The vulnerability is caused due to an unchecked buffer in the handling of the "Name" parameter from certain packets. This can be exploited to cause a buffer overflow and lead to execution of arbitrary code.
2) This update also fixes a previously described vulnerability, for more information: SA13328
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.