CVE-2007-0066
Last modified
CVE-2007-0066 is a vulnerability of currently unknown severity. The kernel in Microsoft Windows 2000 SP4, XP SP2, and Server 2003, when ICMP Router Discovery Protocol (RDP) is enabled, allows remote attackers to cause a denial of service via fragmented router advertisement ICMP packets that trigger an out-of-bounds read, aka "Windows Kernel TCP/IP/ICMP Vulnerability.". EPSS estimates a 31.52% chance of exploitation in the next 30 days.
Description
The kernel in Microsoft Windows 2000 SP4, XP SP2, and Server 2003, when ICMP Router Discovery Protocol (RDP) is enabled, allows remote attackers to cause a denial of service via fragmented router advertisement ICMP packets that trigger an out-of-bounds read, aka "Windows Kernel TCP/IP/ICMP Vulnerability."
Metrics
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Microsoft | Home Server | All versions | — |
| Microsoft | Small Business Server | 2003 | — |
| Microsoft | Windows 2000 | All versions | Sp4 |
| Microsoft | Windows 2003 Server | All versions | Gold |
| Microsoft | Windows Server 2003 | All versions | — |
| Microsoft | Windows Xp | All versions | Sp2 |
References
- http://secunia.com/advisories/28297Patch, Vendor Advisory
- http://www.us-cert.gov/cas/techalerts/TA08-008A.htmlUS Government Resource
- http://www.vupen.com/english/advisories/2008/0069Vendor Advisory
- http://secunia.com/advisories/28297Patch, Vendor Advisory
- http://www.us-cert.gov/cas/techalerts/TA08-008A.htmlUS Government Resource
- http://www.vupen.com/english/advisories/2008/0069Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2007-0066?
How severe is CVE-2007-0066?
How do I fix CVE-2007-0066?
Are you affected by CVE-2007-0066?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST