Microsoft Windows 2000 Unchecked Buffer in SNMP Service Could Enable Arbitrary Code to be Run Q314147 (Windows)

This update resolves the "Unchecked Buffer in SNMP Service Could Enable Arbitrary Code to be Run" security vulnerability in Windows 2000, and is discussed in Microsoft Security Bulletin MS02-006. Download now to prevent a malicious user from running code of his or her choice or launching a denial of service (DoS) attack on your computer. The vulnerability exists because a component of the SNMP agent service that interprets incoming commands contains an unchecked buffer (a temporary data storage area that has a limited capacity). By sending a malformed request, it is possible to carry out a buffer overrun attack against an affected system. Note The SNMP service is neither installed nor running by default in any version of Windows. For more information about this vulnerability, read Microsoft Security Bulletin MS02-006.