A vulnerability within the MQAC module allows an malicious user to inject memory they control into an arbitrary location they define. This can be used by an malicious user to overwrite HalDispatchTable+0x4 and execute arbitrary code by subsequently calling NtQueryIntervalProfile. Microsoft MQ Access Control version 5.1.0.1110 on XP SP3 is affected.