The Distributed File System (DFS) implementation in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 does not properly validate fields in DFS responses, which allows remote DFS servers to execute arbitrary code via a crafted response, aka "DFS Memory Corruption Vulnerability."
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11758
https://exchange.xforce.ibmcloud.com/vulnerabilities/67726
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-042
http://www.securitytracker.com/id?1025639