Secunia Logo  


Secunia PSI WorldMap
 
CVE Reference: CVE-2007-1204
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2007-1204

Description:
Stack-based buffer overflow in the Universal Plug and Play (UPnP) service in Microsoft Windows XP SP2 allows remote attackers on the same subnet to execute arbitrary code via crafted HTTP headers in request or notification messages, which trigger memory corruption.

CVE Status:
Candidate

References:

ST
  1017895

SAID
  Secunia Advisory: SA24822

OVAL
  http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:2049

OSVDB
  34010

MS
  http://www.microsoft.com/technet/security/bulletin/ms07-019.mspx

IDEFENSE
  http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=509

HP
  http://www.securityfocus.com/archive/1/archive/1/466331/100/200/threaded

BID
  23371


Return to the previous page.