1. CVE-Search
  2. CVE-2007-5756
ID CVE-2007-5756
Summary Multiple array index errors in the bpf_filter_init function in NPF.SYS in WinPcap before 4.0.2, when run in monitor mode (aka Table Management Extensions or TME), and as used in Wireshark and possibly other products, allow local users to gain privileges via crafted IOCTL requests.
References
Vulnerable Configurations
  • cpe:2.3:a:winpcap:winpcap:1.0:*:*:*:*:*:*:*
    cpe:2.3:a:winpcap:winpcap:1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:winpcap:winpcap:2.0:*:*:*:*:*:*:*
    cpe:2.3:a:winpcap:winpcap:2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:winpcap:winpcap:2.1:*:*:*:*:*:*:*
    cpe:2.3:a:winpcap:winpcap:2.1:*:*:*:*:*:*:*
  • cpe:2.3:a:winpcap:winpcap:2.02:*:*:*:*:*:*:*
    cpe:2.3:a:winpcap:winpcap:2.02:*:*:*:*:*:*:*
  • cpe:2.3:a:winpcap:winpcap:2.2:*:*:*:*:*:*:*
    cpe:2.3:a:winpcap:winpcap:2.2:*:*:*:*:*:*:*
  • cpe:2.3:a:winpcap:winpcap:2.3:*:*:*:*:*:*:*
    cpe:2.3:a:winpcap:winpcap:2.3:*:*:*:*:*:*:*
  • cpe:2.3:a:winpcap:winpcap:3.0:*:*:*:*:*:*:*
    cpe:2.3:a:winpcap:winpcap:3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:winpcap:winpcap:3.0:alpha_2:*:*:*:*:*:*
    cpe:2.3:a:winpcap:winpcap:3.0:alpha_2:*:*:*:*:*:*
  • cpe:2.3:a:winpcap:winpcap:3.0:alpha_3:*:*:*:*:*:*
    cpe:2.3:a:winpcap:winpcap:3.0:alpha_3:*:*:*:*:*:*
  • cpe:2.3:a:winpcap:winpcap:3.0:beta_10:*:*:*:*:*:*
    cpe:2.3:a:winpcap:winpcap:3.0:beta_10:*:*:*:*:*:*
  • cpe:2.3:a:winpcap:winpcap:3.01:alpha:*:*:*:*:*:*
    cpe:2.3:a:winpcap:winpcap:3.01:alpha:*:*:*:*:*:*
  • cpe:2.3:a:winpcap:winpcap:3.1:*:*:*:*:*:*:*
    cpe:2.3:a:winpcap:winpcap:3.1:*:*:*:*:*:*:*
  • cpe:2.3:a:winpcap:winpcap:3.1:beta:*:*:*:*:*:*
    cpe:2.3:a:winpcap:winpcap:3.1:beta:*:*:*:*:*:*
  • cpe:2.3:a:winpcap:winpcap:3.1:beta2:*:*:*:*:*:*
    cpe:2.3:a:winpcap:winpcap:3.1:beta2:*:*:*:*:*:*
  • cpe:2.3:a:winpcap:winpcap:3.1:beta3:*:*:*:*:*:*
    cpe:2.3:a:winpcap:winpcap:3.1:beta3:*:*:*:*:*:*
  • cpe:2.3:a:winpcap:winpcap:3.1:beta4:*:*:*:*:*:*
    cpe:2.3:a:winpcap:winpcap:3.1:beta4:*:*:*:*:*:*
  • cpe:2.3:a:winpcap:winpcap:3.1.0.27:*:*:*:*:*:*:*
    cpe:2.3:a:winpcap:winpcap:3.1.0.27:*:*:*:*:*:*:*
  • cpe:2.3:a:winpcap:winpcap:3.1_beta4:*:*:*:*:*:*:*
    cpe:2.3:a:winpcap:winpcap:3.1_beta4:*:*:*:*:*:*:*
  • cpe:2.3:a:winpcap:winpcap:3.2:alpha1:*:*:*:*:*:*
    cpe:2.3:a:winpcap:winpcap:3.2:alpha1:*:*:*:*:*:*
  • cpe:2.3:a:winpcap:winpcap:4.0:*:*:*:*:*:*:*
    cpe:2.3:a:winpcap:winpcap:4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:winpcap:winpcap:4.0:alpha1:*:*:*:*:*:*
    cpe:2.3:a:winpcap:winpcap:4.0:alpha1:*:*:*:*:*:*
  • cpe:2.3:a:winpcap:winpcap:4.0:beta1:*:*:*:*:*:*
    cpe:2.3:a:winpcap:winpcap:4.0:beta1:*:*:*:*:*:*
  • cpe:2.3:a:winpcap:winpcap:4.0:beta2:*:*:*:*:*:*
    cpe:2.3:a:winpcap:winpcap:4.0:beta2:*:*:*:*:*:*
  • cpe:2.3:a:winpcap:winpcap:4.0:beta3:*:*:*:*:*:*
    cpe:2.3:a:winpcap:winpcap:4.0:beta3:*:*:*:*:*:*
  • cpe:2.3:a:winpcap:winpcap:4.0.0.1040:*:*:*:*:*:*:*
    cpe:2.3:a:winpcap:winpcap:4.0.0.1040:*:*:*:*:*:*:*
  • cpe:2.3:a:winpcap:winpcap:4.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:winpcap:winpcap:4.0.1:*:*:*:*:*:*:*
CVSS
Base: 6.9 (as of 09-02-2024 - 03:13)
Impact:
Exploitability:
CWE CWE-129
CAPEC
  • Overflow Buffers
    Buffer Overflow attacks target improper or missing bounds checking on buffer operations, typically triggered by input injected by an adversary. As a consequence, an adversary is able to write past the boundaries of allocated buffer regions in memory, causing a program crash or potentially redirection of execution as per the adversaries' choice.
Access
VectorComplexityAuthentication
LOCAL MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:L/AC:M/Au:N/C:C/I:C/A:C
refmap via4
bid 26409
confirm http://www.winpcap.org/misc/changelog.htm
idefense 20071112 WinPcap NPF.SYS bpf_filter_init Arbitrary Array Indexing Vulnerability
sectrack 1018935
secunia 27676
vupen ADV-2007-3835
xf winpcap-bpffilterinit-code-execution(38433)
Last major update 09-02-2024 - 03:13
Published 14-11-2007 - 01:46
Last modified 09-02-2024 - 03:13
Back to Top