CVE-2007-1527

by Fred · 20/03/2007

The LLTD Mapper in Microsoft Windows Vista does not verify that an IP address in a TLV type 0x07 field in a HELLO packet corresponds to a valid IP address for the local network, which allows remote attackers to trick users into communicating with an external host by sending a HELLO packet with the MW characteristic and a spoofed TLV type 0x07 field, aka the "Spoof and Management URL IP Redirect" attack.

Date published : 2007-03-20

http://www.securityfocus.com/bid/23279

http://www.securityfocus.com/archive/1/462793/100/0/threaded

CVE-2007-1527

Similar

Recent Posts

Categories

CVE-2007-1527

Share this:

Similar

Recent Posts

Categories

Tags