[原文]Buffer overflow in SNMP agent service in Windows 95/98/98SE, Windows NT 4.0, Windows 2000, and Windows XP allows remote attackers to cause a denial of service or execute arbitrary code via a malformed management request. NOTE: this candidate may be split or merged with other candidates. This and other PROTOS-related candidates, especially CVE-2002-0012 and CVE-2002-0013, will be updated when more accurate information is available.
Denial of Service,
Loss of Confidentiality,
Loss of Integrity,
Loss of Availability
Multiple inplementations of SNMP contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when an overflow occurs. This flaw may lead to a loss of Confidentiality, Integrity and Availability.
The solution is to disable SNMP where it is not needed. If SNMP is used, it is recomended you go to your vendor's website and download the patch if your product appears in the CERT document.