This update resolves the "Invalid RDP Can Cause Memory Leak in Terminal Services" Denial of Service vulnerability in Windows 2000, and is discussed in Microsoft Security Bulletin MS01-040. Download now to prevent a malicious user from disrupting the activity of your server.

This Denial of Service vulnerability exists because there is a memory leak in the Windows 2000 function that processes incoming Remote Data Protocol (RDP) data. A malicious user sending a large amount of specially malformed data to an affected server could deplete the memory that is available to the server, which can cause the server to stop performing.

For more information about this vulnerability, read Microsoft Security Bulletin MS01-040. (This site is in English).

1. Click Start, point to Settings, and then click Control Panel.
2. Double-click Add/Remove Programs.
3. Click Windows 2000 Hotfix (Pre-SP3) [See Q292435 for more information], and then click Change/Remove to uninstall.