Vulnerabilities > CVE-2007-1531 - Resource Management Errors vulnerability in Microsoft Windows Vista and Windows XP
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
Microsoft Windows XP and Vista overwrites ARP table entries included in gratuitous ARP, which allows remote attackers to cause a denial of service (loss of network access) by sending a gratuitous ARP for the address of the Vista host.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 2 |
Common Weakness Enumeration (CWE)
Exploit-Db
description Microsoft Windows Vista ARP Table Entries Denial of Service Vulnerability. CVE-2007-1531. Dos exploit for windows platform id EDB-ID:29813 last seen 2016-02-03 modified 2004-04-02 published 2004-04-02 reporter Kristian Hermansen source https://www.exploit-db.com/download/29813/ title Microsoft Windows Vista ARP Table Entries Denial of Service Vulnerability description MS Windows Vista forged ARP packet Network Stack DoS Exploit. CVE-2007-1531. Dos exploit for windows platform id EDB-ID:3926 last seen 2016-01-31 modified 2007-05-15 published 2007-05-15 reporter Kristian Hermansen source https://www.exploit-db.com/download/3926/ title Microsoft Windows Vista - Forged ARP packet Network Stack DoS Exploit
Packetstorm
| data source | https://packetstormsecurity.com/files/download/56759/arp-dos.txt |
| id | PACKETSTORM:56759 |
| last seen | 2016-12-05 |
| published | 2007-05-16 |
| reporter | Kristian Hermansen |
| source | https://packetstormsecurity.com/files/56759/arp-dos.txt.html |
| title | arp-dos.txt |
Seebug
bulletinFamily exploit description No description provided by source. id SSV:83292 last seen 2017-11-19 modified 2014-07-01 published 2014-07-01 reporter Root source https://www.seebug.org/vuldb/ssvid-83292 title Microsoft Windows Vista ARP Table Entries Denial of Service Vulnerability bulletinFamily exploit description No description provided by source. id SSV:6811 last seen 2017-11-19 modified 2007-05-15 published 2007-05-15 reporter Root source https://www.seebug.org/vuldb/ssvid-6811 title MS Windows Vista forged ARP packet Network Stack DoS Exploit bulletinFamily exploit description No description provided by source. id SSV:64693 last seen 2017-11-19 modified 2014-07-01 published 2014-07-01 reporter Root source https://www.seebug.org/vuldb/ssvid-64693 title MS Windows Vista - Forged ARP packet Network Stack DoS Exploit
References
- http://osvdb.org/33664
- http://www.securityfocus.com/archive/1/462793/100/0/threaded
- http://www.securityfocus.com/archive/1/464617/100/0/threaded
- http://www.securityfocus.com/bid/23266
- http://www.symantec.com/avcenter/reference/Vista_Network_Attack_Surface_RTM.pdf
- http://www.symantec.com/enterprise/security_response/weblog/2007/04/microsofts_inaccurate_teredo_d.html