With the release of Windows NT, the first 32-bit operating system by Microsoft, the VDM (Virtual Dos Machine) was included, which allowed NT to run DOS and 16-Bit software
In a very busy week for Jerry Bryant, a program manager with the Microsoft Security Response Center (MSRC), he said that Microsoft hasn’t seen any attacks using this vulnerability and explained that, if an attack were to take place, the attacker must have valid logon credentials first.
Ormandy, who reported the bug to Microsoft, more than seven months ago explained that currently no official patch was available, but stated that an effective workaround is available for the vulnerability.