The "Unchecked Buffer in Windows Shell Could Lead to Code Execution" patch eliminates a vulnerability in Windows 98, 98SE, NT 4.0, and Windows 2000 that results from the existence of an unchecked buffer in one of the Windows Shell functions that helps to locate incompletely removed applications on the system. As a result of the vulnerability, it's possible for a malicious user to mount a buffer overrun attack which could cause the Windows Shell to crash or cause code to run in the user's context.
The "Unchecked Buffer in SNMP Service Could Enable Arbitrary Code to be Run" patch eliminates a vulnerability in the Simple Network Management Protocol service of Windows 2000 and XP. Users of SNMP on Windows 95, 98, 98SE, or Windows NT 4.0 are recommended to disable their SNMP service.
