The Distributed File System (DFS) implementation in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 does not properly validate fields in DFS responses, which allows remote DFS servers to execute arbitrary code via a crafted response, aka βDFS Memory Corruption Vulnerability.β
secunia.com/advisories/44894
www.securityfocus.com/bid/48180
www.securitytracker.com/id?1025639
docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-042
exchange.xforce.ibmcloud.com/vulnerabilities/67726
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11758