Vulnerability Name:

CVE-2001-0876 (CCN-7721)

Assigned:2001-12-20
Published:2001-12-20
Updated:2018-10-12
Summary:Buffer overflow in Universal Plug and Play (UPnP) on Windows 98, 98SE, ME, and XP allows remote attackers to execute arbitrary code via a NOTIFY directive with a long Location URL.
CVSS v3 Severity:7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-Other
Vulnerability Consequences:Gain Privileges
References:Source: MITRE
Type: CNA
CVE-2001-0876

Source: BUGTRAQ
Type: UNKNOWN
20011220 Multiple Remote Windows XP/ME/98 Vulnerabilities

Source: NTBUGTRAQ
Type: UNKNOWN
20011220 Multiple Remote Windows XP/ME/98 Vulnerabilities

Source: CCN
Type: CERT Advisory CA-2001-37
Buffer Overflow in UPnP Service On Microsoft Windows

Source: CERT
Type: Patch, Third Party Advisory, US Government Resource
CA-2001-37

Source: CCN
Type: CIAC Information Bulletin M-030
Multiple Remote Windows XP/ME/98 Universal Plug and Play Vulnerabilities

Source: CIAC
Type: UNKNOWN
M-030

Source: CCN
Type: eEye Digital Security Advisory AD20011220
Multiple Remote Windows XP/ME/98 Vulnerabilities

Source: CCN
Type: Internet Security Systems Security Alert #106
Multiple Vulnerabilities in Universal Plug and Play Service

Source: CCN
Type: US-CERT VU#951555
Microsoft Windows Universal Plug and Play (UPNP) vulnerable to buffer overflow via malformed advertisement packets

Source: CERT-VN
Type: US Government Resource
VU#951555

Source: CCN
Type: Microsoft Security Bulletin MS01-059
Unchecked Buffer in Universal Plug and Play can Lead to System Compromise

Source: CCN
Type: OSVDB ID: 692
Microsoft Windows Universal Plug and Play NOTIFY Overflow

Source: BID
Type: Patch, Vendor Advisory
3723

Source: CCN
Type: BID-3723
Microsoft UPnP NOTIFY Buffer Overflow Vulnerability

Source: MS
Type: UNKNOWN
MS01-059

Source: XF
Type: UNKNOWN
win-upnp-notify-bo(7721)

Source: XF
Type: UNKNOWN
win-upnp-notify-bo(7721)

Source: CCN
Type: Microsoft Knowledge Base Article 315000
Unchecked Buffer in Universal Plug and Play Can Lead to System Compromise for Windows XP

Vulnerable Configuration:Configuration 1:
  • cpe:/o:microsoft:windows_98:*:gold:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_98se:*:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_me:*:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_xp:*:gold:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/o:microsoft:windows_98:*:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_98se:*:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_me:*:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:xp:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    microsoft windows 98 * gold
    microsoft windows 98se *
    microsoft windows me *
    microsoft windows xp * gold
    microsoft windows 98 *
    microsoft windows 98se *
    microsoft windows me *
    microsoft windows xp