An attack in which a malicious user exploits an unchecked buffer
in a program and overwrites the program code with their own data.
If the program code is overwritten with new executable code, the
effect is to change the program's operation as dictated by the attacker.
If overwritten with other data, the likely effect is to cause the program
In most cases this is programmer's error.
You're very much CONFUSED if you think that it's Microsoft specific
problem. ANY system where humans are involved in its development
is error prone. Because we are after all, just human.
Just take for example recent buffer overruns in SSH (used by most
administrators) and sendmail on most unix distributions:
"Fix a buffer overflow in address
As you can see it's NOT Microsoft specific. Nothing is perfect.
But Microsoft will be trying its best.