Notice: This website is an unofficial Microsoft Knowledge Base (hereinafter KB) archive and is intended to provide a reliable access to deleted content from Microsoft KB. All KB articles are owned by Microsoft Corporation. Read full disclaimer for more details.

MS08-066: Vulnerability in the Microsoft Ancillary Function driver could allow elevation of privilege

View products that this article applies to.


Microsoft has released security bulletin MS08-066. To view the complete security bulletin, visit one of the following Microsoft Web sites:

How to obtain help and support for this security update

Help installing updates:
Support for Microsoft Update

Security solutions for IT professionals:
TechNet Security Troubleshooting and Support

Help protect your computer that is running Windows from viruses and malware:
Virus Solution and Security Center

Local support according to your country:
International Support

↑ Back to the top

Known issue with this security update

After you install this security update on a Windows XP-based computer or on a Windows Server 2003-based computer that is running ZoneAlarm, you may be unable to connect to the Internet.

This issue may occur when you run the ZoneAlarm versions that are listed in the following table.
ApplicationVersion number range
Zone Alarm Internet Security Suite6.5.645.000–7.0.482.000
Zone Alarm Pro6.5.645.000–7.0.482.000
Zone Alarm Anti Virus6.5.645.000–7.0.482.000
Zone Alarm Anti-Spyware6.5.645.000–7.0.482.000
Zone Alarm Basic Firewall6.5.645.000–7.0.482.000
EndPoint Security6.5.645.000–7.0.865.000 (excluding 7.0.843.0007 and 7.0.866.000)
To resolve this issue, install update 958752.

For more information, click the following article number to view the article in the Microsoft Knowledge Base:

958752 The version of AFD.SYS that is released together with security update 956189 (MS08-037) and security update 956803 (MS08-066) has an application compatibility issue

File information

The English (United States) version of this software update installs files that have the attributes that are listed in the following tables. The dates and times for these files are listed in Coordinated Universal Time (UTC). The dates and times for these files on your local computer are displayed in your local time and with your current daylight saving time (DST) bias. Additionally, the dates and times may change when you perform certain operations on the files.

Windows XP and Windows Server 2003 file information notes

  • The files that apply to a specific milestone (RTM, SPn) and service branch (QFE, GDR) are noted in the "SP requirement" and "Service branch" columns.
  • GDR service branches contain only those fixes that are widely released to address widespread, critical issues. QFE service branches contain hotfixes in addition to widely released fixes.
  • In addition to the files that are listed in these tables, this software update also installs an associated security catalog file ( that is signed with a Microsoft digital signature.
For all supported x86-based versions of Windows XP
File nameFile versionFile sizeDateTimePlatformSP requirementService branch
For all supported x64-based versions of Windows Server 2003 and Windows XP Professional x64 edition
File nameFile versionFile sizeDateTimePlatformSP requirementService branch
For all supported x86-based versions of Windows Server 2003
File nameFile versionFile sizeDateTimePlatformSP requirementService branch
For all supported IA-64-based versions of Windows Server 2003
File nameFile versionFile sizeDateTimePlatformSP requirementService branch
The third-party products that this article discusses are manufactured by companies that are independent of Microsoft. Microsoft makes no warranty, implied or otherwise, about the performance or reliability of these products.

↑ Back to the top

Keywords: kbsecreview, kblangall, kbmustloc, kbexpertisebeginner, kbqfe, kbbug, kbsecbulletin, kbsecvulnerability, kbfix, kb, kbsecurity

↑ Back to the top

Article Info
Article ID : 956803
Revision : 4
Created on : 4/17/2018
Published on : 4/17/2018
Exists online : False
Views : 60