CVE-2007-5587

Loading...

General

Score:6.9/10.0
Severity:Medium
Category:Buffer Error
Exploit:Available

Impact Metrics

Confidentiality:Complete
Integrity:Complete
Availability:Complete

Exploitability Metrics

Access Vector:Local
Access Complexity:Medium
Authentication:None

Published on 19/10/07 - Updated on 15/10/18

Description

Buffer overflow in Macrovision SafeDisc secdrv.sys before 4.3.86.0, as shipped in Microsoft Windows XP SP2, XP Professional x64 and x64 SP2, Server 2003 SP1 and SP2, and Server 2003 x64 and x64 SP2 allows local users to overwrite arbitrary memory locations and gain privileges via a crafted argument to a METHOD_NEITHER IOCTL, as originally discovered in the wild.

Category: Buffer Error

CWE-119 (Buffer Errors)
The software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

Security Notices

US National Vulnerability DatabaseCVE-2007-5587
Agence Nationale de la Sécurité des Systèmes d'Information CERTA-2007-AVI-480, CERTA-2007-AVI-538
Renater 2007/VULN506

Exploits

Exploit-DBEDB-30680
SecurityFocusBID-26121

Relative technologies

VendorProduct
macrovisionsafedisc

Share this vulnerability with:

Twitter Facebook LinkedIn Mail