The WINS service (wins.exe) on Microsoft Windows NT Server 4.0, Windows 2000 Server, and Windows Server 2003 allows remote attackers to write to arbitrary memory locations and possibly execute arbitrary code via a modified memory pointer in a WINS replication packet to TCP port 42, aka the “Association Context Vulnerability.”
marc.info/?l=bugtraq&m=110150370506704&w=2
secunia.com/advisories/13328/
securitytracker.com/id?1012516
support.microsoft.com/kb/890710
www.ciac.org/ciac/bulletins/p-054.shtml
www.immunitysec.com/downloads/instantanea.pdf
www.kb.cert.org/vuls/id/145134
www.osvdb.org/12378
www.securityfocus.com/bid/11763
xforce.iss.net/xforce/alerts/id/184
docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-045
exchange.xforce.ibmcloud.com/vulnerabilities/18259
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1549
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2541
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2734
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3677
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4372
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4831