Reported February 12, 2002, by
Microsoft.
VERSIONS AFFECTED
·
Windows XP
·
Windows 2000
·
Windows NT 4.0
·
Windows Me
·
Windows 9x
DESCRIPTION
VENDOR RESPONSE
The
vendor, Microsoft, has released security
bulletin MS02-006,
which addresses this vulnerability. Microsoft is developing a patch to make
available soon at the MS02-006 URL location.
CREDIT
A buffer overrun vulnerability exists in Microsoft's SNMP
implementation that can lead to a Denial of Service (DoS) attack or remote
compromise of the system running SNMP. By sending a malformed management request
to the vulnerable system, an attacker can run code in the LocalSystem security
context and gain complete control of the system.
Discovered by Microsoft.
Buffer Overrun In Microsoft's SNMP Implementation
0 comments
Hide comments