13 matches found
EUVD-2026-22466
Untrusted pointer dereference in Windows Universal Plug and Play UPnP Device Host allows an authorized attacker to elevate privileges locally...
EUVD-2026-22507
Untrusted pointer dereference in Windows Universal Plug and Play UPnP Device Host allows an authorized attacker to elevate privileges locally...
CVE-2026-27919
Untrusted pointer dereference in Windows Universal Plug and Play UPnP Device Host allows an authorized attacker to elevate privileges locally...
CVE-2025-48819 Windows Universal Plug and Play (UPnP) Device Host Elevation of Privilege Vulnerability
...
Microsoft Plug and Play Service Registry Overflow
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Microsoft Plug and Play Service Registry Overflow', 'Description' = %q This module triggers a stack buffer overflow in the Windows Plug and Play...
Microsoft Windows Universal Plug and Play (UPnP) Elevation of Privilege Vulnerability
Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system.UPnP UPnP is a Universal Plug and Play protocol from the Open Connectivity Foundation. An...
MS Windows Plug-and-Play Service Remote Universal Exploit (MS05-039)
No description provided by source. / HOD-ms05039-pnp-expl.c: 2005-08-10: PUBLIC v.0.2 Copyright c 2005 houseofdabus. MS05-039 Microsoft Windows Plug-and-Play Service Remote Overflow Universal Exploit + no crash shellcode .:: houseofdabus ::...
Windows Plug and Play buffer overflow
Added: 03/03/2006 CVE: CVE-2005-1983 BID: 14513 OSVDB: 18605 Background The Windows Plug and Play service allows Windows operating systems to automatically detect and configure a new hardware device, such as a mouse. Problem A buffer overflow in the Plug and Play service could allow command...
Microsoft Windows Plug-and-Play - 'Umpnpmgr.dll' Denial of Service (MS05-047) (2)
// tested and approved /str0ke / Program: Denial of Service attack for MS UMPNPMGR PNPGetDeviceList Author: Winny Thomas Vulnerability: no length checking on passed parameter to PNPGetDeviceList in UMPNPMGR.dll Note: The code crashes services.exe on the target, effectively bringing down the targe...
Microsoft Windows Plug-and-Play - Umpnpmgr.dll Denial of Service (MS05-047) (2)
Microsoft Windows Plug-and-Play - Umpnpmgr.dll Denial of Service MS05-047 2 // tested and approved /str0ke / Program: Denial of Service attack for MS UMPNPMGR PNPGetDeviceList Author: Winny Thomas Vulnerability: no length checking on passed parameter to PNPGetDeviceList in UMPNPMGR.dll Note: The...
[EEYEB20050803] - Windows UMPNPMGR wsprintfW Stack Buffer Overflow Vulnerability
Windows UMPNPMGR wsprintfW Stack Buffer Overflow Vulnerability Release Date: October 11, 2005 Date Reported: August 3, 2005 Severity: High Remote Code Execution with Authentication Medium Privilege Escalation to SYSTEM Vendor: Microsoft Systems Affected: Windows NT 4.0 Windows 2000 Windows XP eEy...
MS Windows Plug-and-Play Service Remote Universal Exploit (french fix)
No description provided by source. / HOD-ms05039-pnp-expl-french.c 25.Aug.2005 Very slightly modified version by Fabrice MOURRON [email protected] Tested on Win2k SP4 Frencg Original credits & comments follow. / / HOD-ms05039-pnp-expl.c: 2005-08-10: PUBLIC v.0.2 Copyright c 2005 houseofdabus...
VulnCheck KEV: CVE-2005-1983
Stack-based buffer overflow in the Plug and Play PnP service for Microsoft Windows 2000 and Windows XP Service Pack 1 allows remote attackers to execute arbitrary code via a crafted packet, and local users to gain privileges via a malicious application, as exploited by the Zotob aka Mytob worm...