Vulnerability Name:

CVE-2007-1765

Assigned:2007-03-29
Published:2007-03-29
Updated:2021-07-23
Summary:Unspecified vulnerability in Microsoft Windows 2000 SP4 through Vista allows remote attackers to execute arbitrary code or cause a denial of service (persistent reboot) via a malformed ANI file, which results in memory corruption when processing cursors, animated cursors, and icons, a similar issue to CVE-2005-0416, as originally demonstrated using Internet Explorer 6 and 7.
Note: this issue might be a duplicate of CVE-2007-0038; if so, then use CVE-2007-0038 instead of this identifier.
CVSS v3 Severity:9.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): High
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:9.3 High (CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
9.3 High (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-noinfo
References:Source: MISC
Type: Broken Link
http://asert.arbornetworks.com/2007/03/any-ani-file-could-infect-you/

Source: MITRE
Type: CNA
CVE-2007-1765

Source: MISC
Type: Third Party Advisory
http://research.eeye.com/html/alerts/zeroday/20070328.html

Source: MISC
Type: Broken Link
http://vil.nai.com/vil/content/v_141860.htm

Source: MISC
Type: Third Party Advisory
http://www.avertlabs.com/research/blog/?p=230

Source: MISC
Type: Third Party Advisory
http://www.avertlabs.com/research/blog/?p=233

Source: CONFIRM
Type: Vendor Advisory
http://www.microsoft.com/technet/security/advisory/935423.mspx

Source: BUGTRAQ
Type: UNKNOWN
20070330 ANI Zeroday, Third Party Patch

Source: BUGTRAQ
Type: UNKNOWN
20070331 Windows .ANI Stack Overflow Exploit

Source: BID
Type: Third Party Advisory, VDB Entry
23194

Source: SECTRACK
Type: Third Party Advisory, VDB Entry
1017827

Source: VUPEN
Type: Third Party Advisory
ADV-2007-1151

Vulnerable Configuration:Configuration 1:
  • cpe:/o:microsoft:windows_2000:*:*:*:*:advanced_server:*:*:*
  • OR cpe:/o:microsoft:windows_2000:*:*:*:ja:server:*:*:*
  • OR cpe:/o:microsoft:windows_2000:*:sp1:*:*:advanced_server:*:*:*
  • OR cpe:/o:microsoft:windows_2000:-:sp2:*:*:professional:*:*:*
  • OR cpe:/o:microsoft:windows_2000:*:sp3:*:*:advanced_server:*:*:*
  • OR cpe:/o:microsoft:windows_2003_server:-:*:*:*:datacenter:*:*:*
  • OR cpe:/o:microsoft:windows_2003_server:-:*:*:*:enterprise:*:*:*
  • OR cpe:/o:microsoft:windows_vista:*:*:*:*:home_basic:*:*:*
  • OR cpe:/o:microsoft:windows_vista:*:*:*:*:home_premium:*:*:*
  • OR cpe:/o:microsoft:windows_xp:*:sp2:*:*:tablet_pc:*:*:*
  • OR cpe:/o:microsoft:windows_2000:*:sp1:*:*:datacenter_server:*:*:*
  • OR cpe:/o:microsoft:windows_vista:*:beta:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_vista:*:beta1:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_2000:*:*:*:*:datacenter_server:*:*:*
  • OR cpe:/o:microsoft:windows_2000:*:*:*:*:professional:*:*:*
  • OR cpe:/o:microsoft:windows_2000:*:sp1:*:*:professional:*:*:*
  • OR cpe:/o:microsoft:windows_2000:*:sp1:*:*:server:*:*:*
  • OR cpe:/o:microsoft:windows_2000:*:sp2:*:*:advanced_server:*:*:*
  • OR cpe:/o:microsoft:windows_2000:*:sp2:*:*:datacenter_server:*:*:*
  • OR cpe:/o:microsoft:windows_2000:*:sp2:*:*:server:*:*:*
  • OR cpe:/o:microsoft:windows_2000:*:sp3:*:*:datacenter_server:*:*:*
  • OR cpe:/o:microsoft:windows_2000:*:sp3:*:*:professional:*:*:*
  • OR cpe:/o:microsoft:windows_2000:*:sp3:*:*:server:*:*:*
  • OR cpe:/o:microsoft:windows_2000:*:sp4:*:*:advanced_server:*:*:*
  • OR cpe:/o:microsoft:windows_2000:*:sp4:*:*:datacenter_server:*:*:*
  • OR cpe:/o:microsoft:windows_2000:*:sp4:*:*:professional:*:*:*
  • OR cpe:/o:microsoft:windows_2000:*:sp4:*:*:server:*:*:*
  • OR cpe:/o:microsoft:windows_vista:*:*:*:*:december_ctp:*:*:*
  • OR cpe:/o:microsoft:windows_vista:*:*:*:*:enterprise:*:*:*
  • OR cpe:/o:microsoft:windows_xp:*:sp2:*:*:media_center:*:*:*
  • OR cpe:/o:microsoft:windows_xp:*:sp2:*:*:professional:*:*:*
  • OR cpe:/o:microsoft:windows_2003_server:-:*:*:*:web_edition:*:*:*
  • OR cpe:/o:microsoft:windows_2003_server:-:*:*:*:standard:*:*:*
  • OR cpe:/o:microsoft:windows_vista:*:beta2:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_vista:*:*:*:*:business:*:*:*
  • OR cpe:/o:microsoft:windows_xp:*:sp2:*:*:home:*:*:*
  • OR cpe:/o:microsoft:windows_vista:*:*:*:*:*:*:x86:*

    • Configuration 2:
  • cpe:/a:microsoft:ie:7.0:*:vista:*:*:*:*:*
  • OR cpe:/a:avaya:ip600_media_servers:*:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:internet_explorer:*:*:*:*:*:*:*:* (Version <= 6)
  • OR cpe:/h:avaya:definity_one_media_server:*:*:*:*:*:*:*:*
  • OR cpe:/h:avaya:s3400:*:*:*:*:*:*:*:*
  • OR cpe:/h:avaya:s8100:*:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    microsoft windows 2000 *
    microsoft windows 2000 *
    microsoft windows 2000 * sp1
    microsoft windows 2000 - sp2
    microsoft windows 2000 * sp3
    microsoft windows 2003 server -
    microsoft windows 2003 server -
    microsoft windows vista *
    microsoft windows vista *
    microsoft windows xp * sp2
    microsoft windows 2000 * sp1
    microsoft windows vista * beta
    microsoft windows vista * beta1
    microsoft windows 2000 *
    microsoft windows 2000 *
    microsoft windows 2000 * sp1
    microsoft windows 2000 * sp1
    microsoft windows 2000 * sp2
    microsoft windows 2000 * sp2
    microsoft windows 2000 * sp2
    microsoft windows 2000 * sp3
    microsoft windows 2000 * sp3
    microsoft windows 2000 * sp3
    microsoft windows 2000 * sp4
    microsoft windows 2000 * sp4
    microsoft windows 2000 * sp4
    microsoft windows 2000 * sp4
    microsoft windows vista *
    microsoft windows vista *
    microsoft windows xp * sp2
    microsoft windows xp * sp2
    microsoft windows 2003 server -
    microsoft windows 2003 server -
    microsoft windows vista * beta2
    microsoft windows vista *
    microsoft windows xp * sp2
    microsoft windows vista *
    microsoft ie 7.0
    avaya ip600 media servers *
    microsoft internet explorer *
    avaya definity one media server *
    avaya s3400 *
    avaya s8100 *