Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 APP:UPNP:MS-UPNP

Severity

 Critical

Recommended

 No

Recommended Action

 Drop

Category

 APP

Keywords

 Microsoft Universal Plug and Play Invalid Header Overflow

Release Date

 2007/04/10

Update Number

 1213

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

APP: Microsoft Universal Plug and Play Invalid Header Overflow


This signature detects attempts to exploit a known vulnerability in Microsoft Windows Universal Plug and Play. A successful attack can lead to a buffer overflow and arbitrary remote code execution resulting in full control of the target system.

Extended Description

Microsoft Windows is prone to a remote stack-based buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied data before copying it to an insufficiently sized memory buffer. This occurs when handling certain HTTP requests. To exploit this issue, an attacker must be in the same network segment as the victim. Successful exploits may allow attackers to execute arbitrary code with the privileges of the affected service. Failed exploits attempts will likely result in denial-of-service conditions.

Affected Products

  • Avaya Agent Access
  • Avaya Basic Call Management System Reporting Desktop server
  • Avaya Basic Call Management System Reporting Desktop
  • Avaya CMS Supervisor
  • Avaya Computer Telephony
  • Avaya Contact Center Express
  • Avaya Customer Interaction Express (CIE) Server 1.0
  • Avaya Customer Interaction Express (CIE) User Interface 1.0
  • Avaya CVLAN
  • Avaya Enterprise Management
  • Avaya Integrated Management
  • Avaya Interaction Center
  • Avaya Interaction Center - Voice Quick Start
  • Avaya IP Agent
  • Avaya IP Softphone
  • Avaya Modular Messaging (MAS)
  • Avaya Network Reporting
  • Avaya OctelAccess(r) Server
  • Avaya OctelDesignerTM
  • Avaya Operational Analyst
  • Avaya Outbound Contact Management
  • Avaya Speech Access
  • Avaya Unified Communication Center
  • Avaya Unified Communications Center S3400
  • Avaya Visual Messenger TM
  • Avaya Visual Vector Client
  • Avaya VPNmanagerTM Console
  • Avaya Web Messenger
  • Microsoft Windows XP
  • Microsoft Windows XP Home SP1
  • Microsoft Windows XP Home SP2
  • Microsoft Windows XP Home
  • Microsoft Windows XP Media Center Edition SP1
  • Microsoft Windows XP Media Center Edition SP2
  • Microsoft Windows XP Media Center Edition
  • Microsoft Windows XP Professional SP1
  • Microsoft Windows XP Professional SP2
  • Microsoft Windows XP Professional
  • Microsoft Windows XP Professional x64 Edition SP2
  • Microsoft Windows XP Professional x64 Edition
  • Microsoft Windows XP Tablet PC Edition SP1
  • Microsoft Windows XP Tablet PC Edition SP2
  • Microsoft Windows XP Tablet PC Edition
  • Nortel Networks Enterprise Network Management System
  • Nortel Networks Multiservice Data Manager (Operator Client)

References

  • BugTraq: 23371
  • CVE: CVE-2007-1204
  • URL: http://www.securitytracker.com/id?1017895

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out