CVE-2007-1765

Unspecified vulnerability in Microsoft Windows 2000 SP4 through Vista allows remote attackers to execute arbitrary code or cause a denial of service (persistent reboot) via a malformed ANI file, which results in memory corruption when processing cursors, animated cursors, and icons, a similar issue to CVE-2005-0416, as originally demonstrated using Internet Explorer 6 and 7. NOTE: this issue might be a duplicate of CVE-2007-0038; if so, then use CVE-2007-0038 instead of this identifier.

CVSS v2.0 9.3 HIGH

9.3^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability : 8.6 / Impact : 10.0

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://vil.nai.com/vil/content/v_141860.htm	Broken Link
http://www.avertlabs.com/research/blog/?p=230	Third Party Advisory
http://www.avertlabs.com/research/blog/?p=233	Third Party Advisory
http://www.microsoft.com/technet/security/advisory/935423.mspx	Vendor Advisory
http://www.securityfocus.com/bid/23194	Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1017827	Third Party Advisory VDB Entry
http://asert.arbornetworks.com/2007/03/any-ani-file-could-infect-you/	Broken Link
http://research.eeye.com/html/alerts/zeroday/20070328.html	Third Party Advisory
http://www.vupen.com/english/advisories/2007/1151	Third Party Advisory
http://www.securityfocus.com/archive/1/464345/100/0/threaded
http://www.securityfocus.com/archive/1/464287/100/0/threaded

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:microsoft:windows_2000:::::advanced_server:::*
	cpe:2.3:o:microsoft:windows_2000::::ja:server:::
	cpe:2.3:o:microsoft:windows_2000::sp1:::advanced_server:::
	cpe:2.3:o:microsoft:windows_2000:-:sp2:::professional:::*
	cpe:2.3:o:microsoft:windows_2000::sp3:::advanced_server:::
	cpe:2.3:o:microsoft:windows_2003_server:-::::datacenter:::
	cpe:2.3:o:microsoft:windows_2003_server:-::::enterprise:::
	cpe:2.3:o:microsoft:windows_vista:::::home_basic:::*
	cpe:2.3:o:microsoft:windows_vista:::::home_premium:::*
	cpe:2.3:o:microsoft:windows_xp::sp2:::tablet_pc:::
	cpe:2.3:o:microsoft:windows_2000::sp1:::datacenter_server:::
	cpe:2.3:o:microsoft:windows_vista::beta::::::*
	cpe:2.3:o:microsoft:windows_vista::beta1::::::*
	cpe:2.3:o:microsoft:windows_2000:::::datacenter_server:::*
	cpe:2.3:o:microsoft:windows_2000:::::professional:::*
	cpe:2.3:o:microsoft:windows_2000::sp1:::professional:::
	cpe:2.3:o:microsoft:windows_2000::sp1:::server:::
	cpe:2.3:o:microsoft:windows_2000::sp2:::advanced_server:::
	cpe:2.3:o:microsoft:windows_2000::sp2:::datacenter_server:::
	cpe:2.3:o:microsoft:windows_2000::sp2:::server:::
	cpe:2.3:o:microsoft:windows_2000::sp3:::datacenter_server:::
	cpe:2.3:o:microsoft:windows_2000::sp3:::professional:::
	cpe:2.3:o:microsoft:windows_2000::sp3:::server:::
	cpe:2.3:o:microsoft:windows_2000::sp4:::advanced_server:::
	cpe:2.3:o:microsoft:windows_2000::sp4:::datacenter_server:::
	cpe:2.3:o:microsoft:windows_2000::sp4:::professional:::
	cpe:2.3:o:microsoft:windows_2000::sp4:::server:::
	cpe:2.3:o:microsoft:windows_vista:::::december_ctp:::*
	cpe:2.3:o:microsoft:windows_vista:::::enterprise:::*
	cpe:2.3:o:microsoft:windows_xp::sp2:::media_center:::
	cpe:2.3:o:microsoft:windows_xp::sp2:::professional:::
	cpe:2.3:o:microsoft:windows_2003_server:-::::web_edition:::
	cpe:2.3:o:microsoft:windows_2003_server:-::::standard:::
	cpe:2.3:o:microsoft:windows_vista::beta2::::::*
	cpe:2.3:o:microsoft:windows_vista:::::business:::*
	cpe:2.3:o:microsoft:windows_xp::sp2:::home:::
	cpe:2.3:o:microsoft:windows_vista:::::::x86:*

Configuration 2 (hide)

OR	cpe:2.3:a:microsoft:ie:7.0::vista:::::
	cpe:2.3:a:avaya:ip600_media_servers::::::::
	cpe:2.3:a:microsoft:internet_explorer::::::::
	cpe:2.3:h:avaya:definity_one_media_server::::::::
	cpe:2.3:h:avaya:s3400::::::::
	cpe:2.3:h:avaya:s8100::::::::

Information

Published : 2007-03-29 17:19

Updated : 2021-07-23 05:16

NVD link : CVE-2007-1765

Mitre link : CVE-2007-1765

JSON object : View

CWE

NVD-CWE-noinfo

Products Affected

microsoft

windows_2003_server
windows_vista
windows_xp
internet_explorer
ie
windows_2000

avaya

s8100
ip600_media_servers
definity_one_media_server
s3400

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://vil.nai.com/vil/content/v_141860.htm", "name": "http://vil.nai.com/vil/content/v_141860.htm", "tags": ["Broken Link"], "refsource": "MISC"}, {"url": "http://www.avertlabs.com/research/blog/?p=230", "name": "http://www.avertlabs.com/research/blog/?p=230", "tags": ["Third Party Advisory"], "refsource": "MISC"}, {"url": "http://www.avertlabs.com/research/blog/?p=233", "name": "http://www.avertlabs.com/research/blog/?p=233", "tags": ["Third Party Advisory"], "refsource": "MISC"}, {"url": "http://www.microsoft.com/technet/security/advisory/935423.mspx", "name": "http://www.microsoft.com/technet/security/advisory/935423.mspx", "tags": ["Vendor Advisory"], "refsource": "CONFIRM"}, {"url": "http://www.securityfocus.com/bid/23194", "name": "23194", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "BID"}, {"url": "http://www.securitytracker.com/id?1017827", "name": "1017827", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "SECTRACK"}, {"url": "http://asert.arbornetworks.com/2007/03/any-ani-file-could-infect-you/", "name": "http://asert.arbornetworks.com/2007/03/any-ani-file-could-infect-you/", "tags": ["Broken Link"], "refsource": "MISC"}, {"url": "http://research.eeye.com/html/alerts/zeroday/20070328.html", "name": "http://research.eeye.com/html/alerts/zeroday/20070328.html", "tags": ["Third Party Advisory"], "refsource": "MISC"}, {"url": "http://www.vupen.com/english/advisories/2007/1151", "name": "ADV-2007-1151", "tags": ["Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.securityfocus.com/archive/1/464345/100/0/threaded", "name": "20070331 Windows .ANI Stack Overflow Exploit", "tags": [], "refsource": "BUGTRAQ"}, {"url": "http://www.securityfocus.com/archive/1/464287/100/0/threaded", "name": "20070330 ANI Zeroday, Third Party Patch", "tags": [], "refsource": "BUGTRAQ"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Unspecified vulnerability in Microsoft Windows 2000 SP4 through Vista allows remote attackers to execute arbitrary code or cause a denial of service (persistent reboot) via a malformed ANI file, which results in memory corruption when processing cursors, animated cursors, and icons, a similar issue to CVE-2005-0416, as originally demonstrated using Internet Explorer 6 and 7. NOTE: this issue might be a duplicate of CVE-2007-0038; if so, then use CVE-2007-0038 instead of this identifier."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2007-1765", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 9.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "severity": "HIGH", "impactScore": 10.0, "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2007-03-30T00:19Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:microsoft:windows_2000:*:*:*:*:advanced_server:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_2000:*:*:*:ja:server:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_2000:*:sp1:*:*:advanced_server:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_2000:-:sp2:*:*:professional:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_2000:*:sp3:*:*:advanced_server:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_2003_server:-:*:*:*:datacenter:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_2003_server:-:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_vista:*:*:*:*:home_basic:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_vista:*:*:*:*:home_premium:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:tablet_pc:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_2000:*:sp1:*:*:datacenter_server:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_vista:*:beta:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_vista:*:beta1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_2000:*:*:*:*:datacenter_server:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_2000:*:*:*:*:professional:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_2000:*:sp1:*:*:professional:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_2000:*:sp1:*:*:server:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_2000:*:sp2:*:*:advanced_server:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_2000:*:sp2:*:*:datacenter_server:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_2000:*:sp2:*:*:server:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_2000:*:sp3:*:*:datacenter_server:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_2000:*:sp3:*:*:professional:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_2000:*:sp3:*:*:server:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_2000:*:sp4:*:*:advanced_server:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_2000:*:sp4:*:*:datacenter_server:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_2000:*:sp4:*:*:professional:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_2000:*:sp4:*:*:server:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_vista:*:*:*:*:december_ctp:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_vista:*:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:media_center:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:professional:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_2003_server:-:*:*:*:web_edition:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_2003_server:-:*:*:*:standard:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_vista:*:beta2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_vista:*:*:*:*:business:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:home:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_vista:*:*:*:*:*:*:x86:*", "cpe_name": [], "vulnerable": true}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:microsoft:ie:7.0:*:vista:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:avaya:ip600_media_servers:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:microsoft:internet_explorer:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "6"}, {"cpe23Uri": "cpe:2.3:h:avaya:definity_one_media_server:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:avaya:s3400:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:avaya:s8100:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2021-07-23T12:16Z"}

9.3 /10