VulDB: Microsoft Windows Win32 API buffer overflow [CVE-2007-2219]
General
scipID: 3128
Affected: Microsoft Windows
Published: 06/12/2007 (Billy Rios)
Risk: 
critical
Entry: 98.7% complete
Created: 06/18/2007
Updated: 09/03/2012
Summary
A vulnerability, which was classified as critical, has been found in Microsoft Windows. Affected by this issue is an unknown function of the component Win32 API. The manipulation with an unknown input leads to a buffer overflow vulnerability. Impacted is confidentiality, integrity, and availability.
The weakness was presented 06/12/2007 by Billy Rios with VeriSign as MS07-035. The advisory is shared for download at microsoft.com. This vulnerability is handled as CVE-2007-2219 since 04/24/2007. The attack may be launched remotely. There are neither technical details nor an exploit publicly available.
The vulnerability scanner Nessus provides a plugin with the ID 25488, which helps to determine the existence of the flaw in a target environment. It is running in the context local and relying on port 139.
The best possible mitigation is suggested to be upgrading to the latest version. A possible mitigation has been published immediately after the disclosure of the vulnerability. The vulnerability is also documented in the databases at OSVDB (35341), Secunia (SA25640), SecurityFocus (BID 24370) and SecurityTracker (ID 1018230).CVSS
Base Score: 4.6 (CVSS2#AV:N/AC:H/Au:S/C:P/I:P/A:P) [?]
| Access Vector | Access Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Local | High | Multiple | None | None | None |
| Adjacent | Medium | Single | Partial | Partial | Partial |
| Network | Low | None | Complete | Complete | Complete |
Exploiting
Class: Buffer overflow
Local: No
Remote: Yes
Availability: No
Nessus ID: 25488
Nessus Risk: High
Nessus Context: local
Nessus Port: 139
Countermeasures
Recommended: Upgrade
Reaction Time: 0 days since reported
0-Day Time: 0 days since found
Exposure Time: 0 days since known
Timeline
04/24/2007 | CVE assigned
06/12/2007 | Advisory disclosed
06/12/2007 | Countermeasure disclosed
06/12/2007 | Nessus plugin released
06/12/2007 | OSVDB entry created
06/18/2007 | VulDB entry created
09/03/2012 | VulDB entry updated
Sources
Advisory: MS07-035
Researcher: Billy Rios
Company: VeriSign
OSVDB: 35341
CVE: CVE-2007-2219 (mitre.org) (nist.org) (cvedetails.com)
Secunia: 25640
SecurityFocus: 24370
SecurityTracker: 1018230
Vupen: ADV-2007-2155
- Latest Entries
- EMC RSA Authentication API Encryption Key information disclosure
- Cisco Secure Access Control System Web Interface weak authentication
- Python ssl.match_hostname() denial of service
- Mozilla Firefox/Thunderbird nsContentUtils::RemoveScriptBlocker buffer overflow
- Mozilla Firefox/Thunderbird nsFrameList::FirstChild buffer overflow
- Statistics
- Archive
