Microsoft KB Archive/274835

= MS00-083: Buffer Overflow in Network Monitor May Cause Vulnerability =

Article ID: 274835

Article Last Modified on 11/8/2006

-

APPLIES TO


 * Microsoft Windows NT Server 4.0, Terminal Server Edition Service Pack 4
 * Microsoft Windows NT Server 4.0, Terminal Server Edition Service Pack 5
 * Microsoft Windows NT Server 4.0, Terminal Server Edition Service Pack 6
 * Microsoft Windows 2000 Service Pack 1
 * Microsoft Windows 2000 Advanced Server
 * Microsoft Windows NT Server 4.0 Standard Edition
 * Microsoft Windows NT 4.0 Service Pack 1
 * Microsoft Windows NT 4.0 Service Pack 2
 * Microsoft Windows NT 4.0 Service Pack 3
 * Microsoft Windows NT 4.0 Service Pack 4
 * Microsoft Windows NT 4.0 Service Pack 5
 * Microsoft Windows NT 4.0 Service Pack 6a
 * Microsoft Windows NT Server 4.0 Enterprise Edition
 * Microsoft Windows NT 4.0 Service Pack 4
 * Microsoft Windows NT 4.0 Service Pack 5
 * Microsoft Windows NT 4.0 Service Pack 6a

-



This article was previously published under Q274835



SYMPTOMS
When you use Network Monitor to capture data on your network, a malicious user may be able to send malformed data that can run a program or file on your computer or cause Network Monitor to stop responding (hang).



Windows 2000
To resolve this problem, obtain the latest service pack for Windows 2000. For additional information, click the following article number to view the article in the Microsoft Knowledge Base:

260910 How to Obtain the Latest Windows 2000 Service Pack

The following files are available for download from the Microsoft Download Center:

English Language Version

Chinese (Simplified) Language Version

Chinese (Traditional) Language Version

Czech Language Version

Dutch Language Version

French Language Version

Dutch Language Version

Hungarian Language Version

Italian Language Version

Japanese Language Version

Japanese NEC Language Version

Korean Language Version

Polish Language Version

Portuguese (Brazilian) Language Version

Portuguese Language Version

Russian Language Version

Spanish Language Version

Swedish Language Version

Turkish Language Version

For additional information about how to download Microsoft Support files, click the following article number to view the article in the Microsoft Knowledge Base:

119591 How to Obtain Microsoft Support Files from Online Services

Microsoft scanned this file for viruses. Microsoft used the most current virus-detection software that was available on the date that the file was posted. The file is stored on security-enhanced servers that help to prevent any unauthorized changes to the file. The English-language version of this fix should have the following file attributes or later:   Date        Time    Version        Size     File name --  09/26/2000  03:41p  5.0.2195.2328   93,456  Bhp001.dll 09/26/2000 03:41p  5.0.2195.2328    7,440  Bhp002.dll 09/26/2000 03:41p  5.0.2195.2328   13,072  Bhp003.dll 09/26/2000 03:41p  5.0.2195.2328    6,928  Bhp004.dll 09/26/2000 03:41p  5.0.2195.2328   30,992  Bhp005.dll 09/26/2000 03:41p  5.0.2195.2328   19,728  Bhp006.dll 09/26/2000 03:41p  5.0.2195.2328   64,784  Bhp007.dll 09/26/2000 03:41p  5.0.2195.2328   27,408  Bhp008.dll 09/26/2000 03:41p  5.0.2195.2328  125,712  Bhp009.dll 09/26/2000 03:41p  5.0.2195.2328   15,120  Bhp010.dll 09/26/2000 03:41p  5.0.2195.2328   13,072  Bhp011.dll 09/26/2000 03:41p  5.0.2195.2328   49,424  Bhp012.dll 09/26/2000 03:41p  5.0.2195.2328  133,904  Bhp013.dll 09/26/2000 03:41p  5.0.2195.2328   12,048  Bhp014.dll 09/26/2000 03:41p  5.0.2195.2328  179,984  Bhp015.dll 09/26/2000 03:41p  5.0.2195.2328   16,144  Bhp016.dll 09/26/2000 03:32p                     352  Bhp016.ini 09/26/2000 03:41p  5.0.2195.2328   21,264  Bhp017.dll 09/26/2000 03:41p  5.0.2195.2328   12,048  Bhp018.dll 09/26/2000 03:41p  5.0.2195.2328  135,440  Bhp019.dll 09/26/2000 03:41p  5.0.2195.2328   95,504  Bhp020.dll 09/26/2000 03:41p  5.0.2195.2328  119,568  Bhp021.dll 09/26/2000 03:41p  5.0.2195.2328   19,728  Bhp022.dll 09/26/2000 03:41p  5.0.2195.2328   10,512  Bhp023.dll 09/26/2000 03:41p  5.0.2195.2328   15,120  Bhp024.dll 09/26/2000 03:41p  5.0.2195.2328   16,144  Bhp025.dll 09/26/2000 03:41p  5.0.2195.2328  785,680  Netmon.exe 09/26/2000 03:40p  5.0.2195.2328   64,784  Nmapi.dll

Windows NT 4.0
To resolve this problem, obtain the individual package referenced below or obtain the Windows NT 4.0 Security Rollup Package. For additional information on the SRP, click the article number below to view the article in the Microsoft Knowledge Base:

299444 Post-Windows NT 4.0 Service Pack 6a Security Rollup Package (SRP)

The following file is available for download from the Microsoft Download Center:

Download Q274835i.exe now

For additional information about how to download Microsoft Support files, click the following article number to view the article in the Microsoft Knowledge Base:

119591 How to Obtain Microsoft Support Files from Online Services

Microsoft scanned this file for viruses. Microsoft used the most current virus-detection software that was available on the date that the file was posted. The file is stored on secure servers that prevent any unauthorized changes to the file.

The English-language version of this fix should have the following file attributes or later:   Date        Time    Version    Size     File name ---  10/30/2000  01:45p  4.0.354.1  130,832  Atalk.dll 10/30/2000 01:45p  4.0.354.1   10,000  Bone.dll 10/30/2000 01:45p  4.0.354.1   18,192  Browser.dll 10/30/2000 01:45p  4.0.354.1   42,768  Ipx.dll 10/30/2000 01:45p  4.0.354.1  203,536  Ncp.dll 10/30/2000 01:45p  4.0.354.1   21,280  Netbios.dll 10/30/2000 01:45p  4.0.354.1   63,968  Nmapi.dll 10/30/2000 01:45p  4.0.354.1   63,760  Ppp.dll 10/30/2000 01:45p  4.0.354.1  168,208  Smb.dll 10/30/2000 01:45p  4.0.354.1   16,656  Snmp.dll 10/30/2000 01:45p  4.0.354.1  186,128  Tcpip.dll 10/30/2000 01:45p  4.0.354.1   21,264  Trail.dll 10/30/2000 01:45p  4.0.354.1   26,896  Vines.dll

Microsoft Windows NT Server version 4.0, Terminal Server Edition
To resolve this problem, obtain the Windows NT Server 4.0, Terminal Server Edition, Security Rollup Package (SRP). For additional information about the SRP, click the article number below to view the article in the Microsoft Knowledge Base:

317636 Windows NT Server 4.0, Terminal Server Edition, Security Rollup Package



Windows 2000
Microsoft has confirmed that this problem may cause a degree of security vulnerability in Microsoft Windows 2000.

Windows NT 4.0
Microsoft has confirmed that this problem may cause a degree of security vulnerability in Microsoft Windows NT 4.0 and Windows NT Server version 4.0, Terminal Server Edition.



MORE INFORMATION
For more information about this vulnerability, view the following Microsoft Web site:

http://www.microsoft.com/technet/security/bulletin/ms00-083.mspx

Additional query words: security_patch kbtsesrp

Keywords: kbbug kbfix kbwin2000presp2fix kbenv kbsecurity KB274835

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.