Does this vulnerability affect the Telnet server that ships in Windows NT 4.0 or Windows 2000?
No. Both Windows NT 4.0 and Windows 2000 ship with a native Telnet server, which is completely different from the one included in SFU 2.0. Neither product is affected by this vulnerability. How does the patch eliminate this vulnerability? The patch eliminates the vulnerability by removing the memory leak condition and ensuring that all memory is returned to the system when no longer needed.