CSCare Inc. Information for VU#854306

Multiple vulnerabilities in SNMPv1 request handling

Status

Affected

Vendor Statement

      As a result of this advisory, CSCare has conducted extensive testing of its products. We have determined that exploiting these
      vulnerabilities can interfere with the normal operation of Trap Console 1.4b. Results have not indicated any vulnerability that will
      allow an attacker to gain access to the host computer. It has been determined that Active SNMP 2.0b is not vulnerable.

      CSCare has released Trap Console 1.4c update on March 5, 2002. This release containing fixes for all known vulnerabilities is
      now available for download at http://www.cscare.com/TrapConsole.

      For more information, please feel free to contact CSCare by email at info@cscare.com or by phone at 408-490-2736.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References

None

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.