Security Update, October 7, 2000
This update resolves the "Multiple LPC and LPC Ports" security vulnerability in Windows 4.0, and is discussed in Microsoft Security Bulletin MS00-003. Download now to help prevent a malicious user from causing your computer to fail, impersonating your privileges, or causing the client or server to fail by posing as the client or server and sending random data.
Local Procedure Call (LPC) is a message-passing service provided by Windows NT 4.0. LPC ports are channels within LPC that allow threads (a series of messages that have been posted as replies to each other) within a communication process to coordinate LPC requests. Windows NT 4.0 is unable to handle unexpected LPCs properly. If a malicious user makes process requests in an invalid order, or uses invalid parameters, it could cause your computer to fail or permit a malicious user to impersonate your privileges and eavesdrop.
For more information about this vunerability, read Microsoft Security Bulletin MS00-003 and (This site is in English.)
This update applies to Windows NT 4.0.
Restart your computer to complete the installation.
- Click the Start button, point to Settings, and then click
Control Panel.
- Double-click Add/Remove Programs.
- Click Windows NT Hotfix (Pre-Sp2) [See Q266433 for more information].
- Click Change/Remove.