Home / bulletins MS09-048 - Critical: Vulnerabilities in Windows TCP/IP Could Allow Remote Code Execution (967723) - Version:2.1
Posted on 11 September 2009
CriticalSeverity Rating: Critical - Revision Note: V2.1 (September 10, 2009): Updated the Microsoft Windows 2000 and Windows XP entries to the section, Frequently Asked Questions (FAQ) Related to This Security Update, to clarify the scope of the vulnerability and list recommended actions.Summary: This security update resolves several privately reported vulnerabilities in Transmission Control Protocol/Internet Protocol (TCP/IP) processing. The vulnerabilities could allow remote code execution if an attacker sent specially crafted TCP/IP packets over the network to a computer with a listening service. Firewall best practices and standard default firewall configurations can help protect networks from attacks that originate outside the enterprise perimeter. Best practices recommend that systems that are connected to the Internet have a minimal number of ports exposed.
Other versions
- MS09-048 - Version: 1.0
- MS09-048 - Version: 2.0
- MS09-048 - Version: 2.1
