ZDNet UK

CNET NETWORKS UK BUSINESS SITES:
atlarge.com
BNET UK
silicon.com
SmartPlanet.com
ZDNet.co.uk

ZDNet.co.uk - Winner of Best Business Website 2007

You are here: ZDNet.co.uk > Resources > Downloads > Windows > Antivirus, Firewall, & Spyware > Corporate Security Software

Resources Downloads

Microsoft Netmon Protocol Parsing Vulnerability Patch (Windows 2000) (MS00-083)

		License	Free
		Requirements	None
Downloads	284	Limitations	None
Publisher	Microsoft	File Size	1.5M
Date added	11 Nov 2000		Check your speed

Publisher's Description

Report a broken link

This patch eliminates a security vulnerability in Microsoft Windows 2000 server products and Systems Management Server. The vulnerability could allow a malicious user to gain control of an affected server.

Microsoft ships two versions of Network Monitor (Netmon): a basic version that ships with Windows NT 4.0 and Windows 2000 server products, and a full version that ships as part of Systems Management Server (SMS) 1.2 and 2.0. Both versions include protocol parsers that aid administrators in interpreting and analyzing previously captured network data. However, several of the parsers have unchecked buffers. If a malicious user delivered a specially malformed frame to a server that was monitoring network traffic, and the administrator parsed it using an affected parser, it would have the effect of either causing Netmon to fail or causing code of the malicious user's choice to run on the machine.

Netmon requires administrative privileges to run, but should only be run by local, rather than domain, administrators. If this is done, the vulnerability could be used to gain complete control over the local machine, but could not be used to gain control over a domain. Netmon does not ship on workstation products, so unless SMS had been installed on a workstation, it would not be affected by this vulnerability.

Read the Netmon Protocol Parsing Vulnerability FAQ.

Note: Netmon does not ship as part of Windows NT 4.0 Workstation or Windows 2000 Professional. These products would only be affected if SMS had been installed on them.

Did you find this download useful?
24 out of 49 users found this download useful

People who downloaded this software also downloaded...

Web Form SPAM Protection 1.5.1

Protect your files against spam spiders by encrypting your Web form code.

More info

Download

Sa4o - SafestMail4Outlook 2

Protect your e-mail against unsolicited messages and spams.

More info

Download

SolidShare 2.6.11

Connect anyone on your network to the Internet with one ISP account and one modem.

More info

Download

SpyWall Anti-Spyware 1.4.3.1

Remove spyware and keep them out with a browser sandbox.

More info

Download

Cute Password Manager 2008.1.3.8

Log into Web sites and fill forms with just a few mouse clicks.

More info

Download

ItsCryptic 1

Protect files confidential to you or your business by encrypting them.

More info

Download

Anonymity Gateway 2.5

Mask your real IP while surfing and erase traces of online activity.

More info

Download

K16 Parental Monitoring Software 9

Log user activity on your computer and keep record of all keys pressed.

More info

Download

EasyCryptor 1

Encrypt and decrypt any files and send results to your e-mail address.

More info

Download

Child Computer Lock 1.6

Protect your privacy by locking your computer.

More info

Download

More In Security management

Download

Embarcadero Power SQL

Embarcadero PowerSQL simplifies SQL development for application developers with many features for improving productivity and reducing errors.

Downloads: 4,554
Requirements:
License: Vendor registration required
Publisher: Embarcadero
Size: 0

Install Flash Player Plugin

Featured Talkback

It seems to me this is a burden being placed on the wrong shoulders. There is not an It system in the world that can stop an individual taking information in their heads and spewing out at the nearest undesirable third party.