CVE-2007-3681 Information
Description
The IOCTL 9031 (BIOCGSTATS) handler in the NPF.SYS device driver in WinPcap before 4.0.1 allows local users to overwrite memory and execute arbitrary code via malformed Interrupt Request Packet (Irp) parameters.
Reference
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=550 http://osvdb.org/37889 http://secunia.com/advisories/25982 http://securitytracker.com/id?1018350 http://www.securityfocus.com/archive/1/473270/100/0/threaded http://www.securityfocus.com/archive/1/473297/100/0/threaded http://www.securityfocus.com/archive/1/473301/100/0/threaded http://www.securityfocus.com/bid/24829 http://www.vupen.com/english/advisories/2007/2468 http://www.winpcap.org/misc/changelog.htm https://exchange.xforce.ibmcloud.com/vulnerabilities/35309 https://www.exploit-db.com/exploits/4165
Share on: