Features
-
License:
Free
-
Editor's Rating:
Not rated
- Average User Rating:
-
Downloads:
3,553
- Operating Systems:
Windows 2000
- Additional Requirements:
No additional requirements
- Limitations:
No limitations
- Date Added:
November 10, 2000
Publisher's description of Microsoft Netmon Protocol Parsing Vulnerability Patch (Windows 2000)
From Microsoft:This patch eliminates a security vulnerability in Microsoft Windows 2000 server products and Systems Management Server. The vulnerability could allow a malicious user to gain control of an affected server.
Microsoft ships two versions of Network Monitor (Netmon): a basic version that ships with Windows NT 4.0 and Windows 2000 server products, and a full version that ships as part of Systems Management Server (SMS) 1.2 and 2.0. Both versions include protocol parsers that aid administrators in interpreting and analyzing previously captured network data. However, several of the parsers have unchecked buffers. If a malicious user delivered a specially malformed frame to a server that was monitoring network traffic, and the administrator parsed it using an affected parser, it would have the effect of either causing Netmon to fail or causing code of the malicious user's choice to run on the machine.
Netmon requires administrative privileges to run, but should only be run by local, rather than domain, administrators. If this is done, the vulnerability could be used to gain complete control over the local machine, but could not be used to gain control over a domain. Netmon does not ship on workstation products, so unless SMS had been installed on a workstation, it would not be affected by this vulnerability.
Read the Netmon Protocol Parsing Vulnerability FAQ.
CNET Editor's Note: Netmon does not ship as part of Windows NT 4.0 Workstation or Windows 2000 Professional. These products would only be affected if SMS had been installed on them.
- See more CNET content tagged:
- Microsoft Systems Management Server,
- Microsoft Windows 2000 Server,
- administrator,
- malicious user,
- vulnerability
More popular Corporate Security Software downloads
- 532 downloads 1. McAfee Total Protection for Small Business
- 368 downloads 2. Activity Monitor
- 314 downloads 3. Wireshark
- 299 downloads 4. Trend Micro OfficeScan Managed Antivirus
- 292 downloads 5. Ping Tester Pro
- See all Corporate Security Software downloads
User reviews
Write your own review Be the first one to review Microsoft Netmon Protocol Parsing Vulnerability Patch (Windows 2000) (MS00-083) and share your experience with the CNET community!
Previous versions: See all user reviews
Submit your review
You must be 13 years of age or older to submit personal information to CNET Networks. In compliance with the Children's Online Privacy Protection Act of 1998, CNET Networks does not accept name and e-mail address information from users who are under 13 years of age.
All submitted ratings and written comments become the sole property of CNET Networks, Inc. (CNET) and may be used at CNET Networks' sole discretion. Ratings and written comments are generally posted within two to four business days in batch groups, not in real time. However, CNET Networks reserves the right to remove or refuse to post any submission for any reason. You acknowledge that you, not CNET Networks, are responsible for the contents of your submission.
CNET Networks is not responsible for the content of the publisher's descriptions or user reviews on this site. We encourage you to determine whether this product or your intended use is legal. We do not encourage or condone the use of any software in violation of applicable laws. CNET Download.com does not sell, resell, or license any of the products listed on the site. We cannot be held liable for issues that arise from the download or use of these products.
%20-%20Free%20software%20downloads%20and%20reviews%20-%20CNET%20Download.com&srcUrl=http://download.cnet.com/Microsoft-Netmon-Protocol-Parsing-Vulnerability-Patch-Windows-2000/3000-2653_4-10050598.html){kind=small}