Back to search
CVE-2007-1204
Published: Apr 10, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Stack-based buffer overflow in the Universal Plug and Play (UPnP) service in Microsoft Windows XP SP2 allows remote attackers on the same subnet to execute arbitrary code via crafted HTTP headers in request or notification messages, which trigger memory corruption.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
1017895
vdb-entry
x_refsource_SECTRACK
HPSBST02208
vendor-advisory
x_refsource_HP
ADV-2007-1323
vdb-entry
x_refsource_VUPEN
24822
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:2049
vdb-entry
signature
x_refsource_OVAL
20070410 Microsoft Windows Universal Plug and Play Memory Corruption Vulnerability
third-party-advisory
x_refsource_IDEFENSE
34010
vdb-entry
x_refsource_OSVDB
MS07-019
vendor-advisory
x_refsource_MS
SSRT071365
vendor-advisory
x_refsource_HP
23371
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now