Notified:  September 14, 2001 Updated: October 24, 2001

Status

Affected

Vendor Statement

RSA Security identified and proactively fixed this issue in July 2001 and notified all customers. Companies using the following agents are not affected: RSA ACE/Agent 4.4.3 (or later) for Windows NT RSA ACE/Agent 1.1.2 (or later) for Windows 2000 RSA ACE/Agent 5.0 for Windows To download the most recent versions of the agents, refer to http://www.rsa.com/download/.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.