PT-2008-1404 · Microsoft · Windows Vista+2

Published

2008-01-08

Updated

2018-10-16

CVE-2007-0069

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Microsoft Windows XP SP2 Microsoft Windows Server 2003 Microsoft Windows Vista

Description The issue allows remote attackers to cause a denial of service, potentially leading to CPU consumption, and possibly execute arbitrary code. This is achieved through crafted IGMPv3 and MLDv2 packets that trigger memory corruption.

Recommendations For Microsoft Windows XP SP2, update to a version that includes the fix for this issue. For Microsoft Windows Server 2003, update to a version that includes the fix for this issue. For Microsoft Windows Vista, update to a version that includes the fix for this issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2007-0069

Affected Products

Windows Server 2003

Windows Vista

Windows Xp

PT-2008-1404 · Microsoft · Windows Vista+2

CVE-2007-0069

Related Identifiers

Affected Products

References · 14