CVE-2007-1537
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
20/03/2007
Last modified:
09/04/2025
Description
\Device\NdisTapi (NDISTAPI.sys) in Microsoft Windows XP SP2 and 2003 SP1 uses weak permissions, which allows local users to write to the device and cause a denial of service, as demonstrated by using an IRQL to acquire a spinlock on paged memory via the NdisTapiDispatch function.
Impact
Base Score 2.0
3.60
Severity 2.0
LOW
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:microsoft:windows_2003_server:sp1:*:*:*:*:*:*:* | ||
| cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://secunia.com/advisories/24598
- http://securityreason.com/securityalert/2471
- http://www.osvdb.org/33628
- http://www.reversemode.com/index.php?option=com_remository&Itemid=2&func=fileinfo&id=47
- http://www.securityfocus.com/archive/1/463208/100/0/threaded
- http://www.securityfocus.com/bid/23025
- http://www.vupen.com/english/advisories/2007/1031
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33086
- http://secunia.com/advisories/24598
- http://securityreason.com/securityalert/2471
- http://www.osvdb.org/33628
- http://www.reversemode.com/index.php?option=com_remository&Itemid=2&func=fileinfo&id=47
- http://www.securityfocus.com/archive/1/463208/100/0/threaded
- http://www.securityfocus.com/bid/23025
- http://www.vupen.com/english/advisories/2007/1031
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33086