3 matches found
CVE-2007-1204
The CVE-2007-1204 issue affects Microsoft Windows XP SP2 with the UPnP service. It is a stack-based buffer overflow triggered by specially crafted HTTP headers in UPnP requests/notifications, allowing a remote attacker on the same subnet to execute arbitrary code in the context of the vulnerable ...
iDefense Security Advisory 04.10.07: Microsoft Windows Universal Plug and Play Memory Corruption Vulnerability
Microsoft Windows Universal Plug and Play Memory Corruption Vulnerability iDefense Security Advisory 04.10.07 http://labs.idefense.com/intelligence/vulnerabilities/ Apr 10, 2007 I. BACKGROUND Universal Plug and Play UPnP is a group of network protocols that work together to enable devices to...
Microsoft Windows UPnP Service Remote Code Execution (MS07-019; CVE-2007-1204)
The Universal Plug and Play UPnP service in Microsoft Windows is vulnerable to remote code execution. UPnP is a set of computer network protocols that extends Plug and Play to allow computers and devices to configure network services automatically. A remote attacker may exploit this issue to caus...