Vulnerability Details CVE-2007-1531
Microsoft Windows XP and Vista overwrites ARP table entries included in gratuitous ARP, which allows remote attackers to cause a denial of service (loss of network access) by sending a gratuitous ARP for the address of the Vista host.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.494
EPSS Ranking 97.7%
CVSS Severity
CVSS v2 Score 5.0
References
- http://osvdb.org/33664
- http://www.securityfocus.com/archive/1/462793/100/0/threaded
- http://www.securityfocus.com/archive/1/464617/100/0/threaded
- http://www.securityfocus.com/bid/23266
- http://www.symantec.com/avcenter/reference/Vista_Network_Attack_Surface_RTM.pdf
- http://www.symantec.com/enterprise/security_response/weblog/2007/04/microsofts_inaccurate_teredo_d.html
- http://osvdb.org/33664
- http://www.securityfocus.com/archive/1/462793/100/0/threaded
- http://www.securityfocus.com/archive/1/464617/100/0/threaded
- http://www.securityfocus.com/bid/23266
- http://www.symantec.com/avcenter/reference/Vista_Network_Attack_Surface_RTM.pdf
- http://www.symantec.com/enterprise/security_response/weblog/2007/04/microsofts_inaccurate_teredo_d.html
Products affected by CVE-2007-1531
-
cpe:2.3:o:microsoft:windows_vista:-
-
cpe:2.3:o:microsoft:windows_xp:-
-
cpe:2.3:o:microsoft:windows_xp:sp2
-
cpe:2.3:o:microsoft:windows_xp:sp3
-
cpe:2.3:o:microsoft:windows_xp:unknown