ID CVE-2007-1528
Summary The LLTD Mapper in Microsoft Windows Vista allows remote attackers to spoof hosts, and nonexistent bridge relationships, into the network topology map by using a MAC address that differs from the MAC address provided in the Real Source field of the LLTD BASE header of a HELLO packet, aka the "Spoof on Bridge" attack.
References
Vulnerable Configurations
  • cpe:2.3:o:microsoft:windows_vista:*:*:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows_vista:*:*:*:*:*:*:*:*
CVSS
Base: 5.0 (as of 16-10-2018 - 16:38)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE PARTIAL NONE
cvss-vector via4 AV:N/AC:L/Au:N/C:N/I:P/A:N
refmap via4
bid 23280
bugtraq
  • 20070313 New report on Windows Vista network attack surface
  • 20070403 Nine Vista CVEs, including Microsoft inaccurate Teredo use case documentation
misc
osvdb 33662
Last major update 16-10-2018 - 16:38
Published 20-03-2007 - 20:19
Last modified 16-10-2018 - 16:38
Back to Top