A remote overflow exists in Compaq Insight Manager XE. The server fails to properly check bounds on SNMP requests, resulting in a buffer overflow. With a specially crafted request, an attacker can execute arbitrary code, likely with administrative privileges, resulting in a loss of integrity and/or availability.
Currently, there are no known workarounds to correct this issue. Users are advised to upgrade to version 2.1c, or apply the patch at the above-listed vendor specific solution URL. Users wishing to upgrade should note that this product has now been replaced by HP Systems Insight manager, which as of May 2004 was running at version 4.1.