Vulnerabilities in Event System Could Allow Remote Code Execution (950974)

Summary
This host is missing a critical security update according to Microsoft Bulletin MS08-049.
Impact
Remote exploitation allows attackers to execute arbitrary code with system privileges. Impact Level : System
Solution
Run Windows Update and update the listed hotfixes or download and update mentioned hotfixes in the advisory from the below link. http://www.microsoft.com/technet/security/bulletin/ms08-049.mspx
Insight
Issues are due to the Microsoft Windows Event System does not properly validate the range of indexes when calling an array of function pointers and fails to handle per-user subscription requests.
Affected
Microsoft Windows 2K/XP/2003
References