CSCare Inc. Information for VU#107186

Multiple vulnerabilities in SNMPv1 trap handling



Vendor Statement

      As a result of this advisory, CSCare has conducted extensive testing of its products. We have determined that exploiting these
      vulnerabilities can interfere with the normal operation of Trap Console 1.4b. Results have not indicated any vulnerability that will
      allow an attacker to gain access to the host computer. It has been determined that Active SNMP 2.0b is not vulnerable.

      CSCare has released Trap Console 1.4c update on March 5, 2002. This release containing fixes for all known vulnerabilities is
      now available for download at

      For more information, please feel free to contact CSCare by email at or by phone at 408-490-2736.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References



The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.