Microsoft Windows Plug and Play Service UMPNPMGR buffer overflow
news
/
advisories
/
forum
/
software
/
advertising
/
search
/
exploits
[EN]
securityvulns.ru
no-pyccku
Microsoft Windows Plug and Play Service UMPNPMGR buffer overflow
updated since 12.10.2005
Published:
17.11.2005
Source:
BUGTRAQ
SecurityVulns ID:
5324
Type:
remote
Level:
7
/10
Description:
Buffer overflow on PNP_GetDeviceList and PNP_GetDeviceListSize calls for anonymous user on Windows 2000 and authenticated user on Windows 2003 / XP. There is another one similar vulnerability, leading to memory leak with DoS conditions.
Affected:
MICROSOFT
:
Windows 2000 Server
MICROSOFT
:
Windows 2000 Professional
MICROSOFT
:
Windows XP
MICROSOFT
:
Windows 2003 Server
Original document
MICROSOFT
,
Microsoft Security Bulletin MS05-047 Vulnerability in Plug and Play Could Allow Remote Code Execution and Local Elevation of Privilege (905749)
(
12.10.2005
)
EEYE
,
[EEYEB20050803] - Windows UMPNPMGR wsprintfW Stack Buffer Overflow Vulnerability
(
12.10.2005
)
Files:
Windows UMPNPMGR wsprintfW Stack Buffer Overflow Vulnerability PoC
Denial of Service attack for MS UMPNPMGR PNP_GetDeviceList
memory leak and eventual DOS when calling UPNP getdevicelist on windows 2000 server
Microsoft Security Bulletin MS05-047 Vulnerability in Plug and Play Could Allow Remote Code Execution and Local Elevation of Privilege (905749)
Discuss:
Read or add your comments to this news (0 comments)
About
|
Terms of use
|
Privacy Policy
©
SecurityVulns
,
3APA3A
, Vladimir Dubrovin
Enter your search terms
Web
securityvulns.com
Submit search form
