Microsoft Windows NDISTAPI.sys Permission Weakness Local DoS

2007-03-19T08:34:06
ID OSVDB:33628
Type osvdb
Reporter Rubén Santamarta(ruben@reversemode.com)
Modified 2007-03-19T08:34:06

Description

Vulnerability Description

Microsoft Windows contains a flaw that may allow a local denial of service. The issue is caused due to weak permissions in "ndistapi.sys" allowing user-mode applications write to "Device\NdisTapi". A local attacker can exploit this by sending arbitrary data resulting in a loss of availability.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue. However it seems that Microsoft has corrected this issue for Windows 2003 Server within the release of Service Pack 2.

Short Description

Microsoft Windows contains a flaw that may allow a local denial of service. The issue is caused due to weak permissions in "ndistapi.sys" allowing user-mode applications write to "Device\NdisTapi". A local attacker can exploit this by sending arbitrary data resulting in a loss of availability.

References:

Secunia Advisory ID:24598 Other Advisory URL: http://www.reversemode.com/index.php?option=com_remository&Itemid=2&func=fileinfo&id=47 Other Advisory URL: http://www.securiteam.com/windowsntfocus/5OP0P0AKUA.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2007-03/0261.html ISS X-Force ID: 33086 FrSIRT Advisory: ADV-2007-1031 CVE-2007-1537 Bugtraq ID: 23025