Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5756

Overview

Vulnerability Score 6.9 6.9
CVE Id CVE-2007-5756
Last Modified 07 Mar 2011 10:01:14
Published 13 Nov 2007 08:46:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2007-5756

Summary

Multiple array index errors in the bpf_filter_init function in NPF.SYS in WinPcap before 4.0.2, when run in monitor mode (aka Table Management Extensions or TME), and as used in Wireshark and possibly other products, allow local users to gain privileges via crafted IOCTL requests.

Vulnerable Systems

Application

  • Winpcap 4.0.1


References

SECUNIA - 27676

XF - winpcap-bpffilterinit-code-execution(38433)

CONFIRM - http://www.winpcap.org/misc/changelog.htm

VUPEN - ADV-2007-3835

SECTRACK - 1018935

BID - 26409

IDEFENSE - 20071112 WinPcap NPF.SYS bpf_filter_init Arbitrary Array Indexing Vulnerability


Last Updated: 27 May 2016 10:46:16