Vulnerabilities > CVE-2001-1552 - Denial of Service vulnerability in Windows ME Simple Service Discovery Protocol

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

microsoft

NVD

Published: 2001-12-31

Updated: 2008-09-10

Summary

ssdpsrv.exe in Windows ME allows remote attackers to cause a denial of service by sending multiple newlines in a Simple Service Discovery Protocol (SSDP) message. NOTE: multiple replies to the original post state that the problem could not be reproduced.

Vulnerable Configurations

Part	Description	Count
OS	Microsoft Microsoft Windows ME *	1

References

http://archives.neohapsis.com/archives/bugtraq/2001-10/0133.html
http://www.iss.net/security_center/static/7318.php
http://www.securityfocus.com/bid/3442