Vulnerability Name:

CVE-2008-5229 (CCN-46742)

Assigned:2008-11-19
Published:2008-11-19
Updated:2018-10-11
Summary:Stack-based buffer overflow in Microsoft Device IO Control in iphlpapi.dll in Microsoft Windows Vista Gold and SP1 allows local users in the Network Configuration Operator group to gain privileges or cause a denial of service (system crash) via a large invalid PrefixLength to the CreateIpForwardEntry2 method, as demonstrated by a "route add" command.
Note: this issue might not cross privilege boundaries.
CVSS v3 Severity:8.2 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): Required
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:6.9 Medium (CVSS v2 Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C)
5.6 Medium (Temporal CVSS v2 Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C/E:U/RL:U/RC:UR)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
6.8 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:S/C:C/I:C/A:C)
5.5 Medium (CCN Temporal CVSS v2 Vector: AV:L/AC:L/Au:S/C:C/I:C/A:C/E:U/RL:U/RC:UR)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-119
Vulnerability Consequences:Gain Access
References:Source: CCN
Type: BugTraq Mailing List, Wed Nov 19 2008 - 10:04:05 CST
Microsoft VISTA TCP/IP stack buffer overflow

Source: MITRE
Type: CNA
CVE-2008-5229

Source: CCN
Type: SA32791
Windows Vista "CreateIpForwardEntry2()" Memory Corruption Vulnerability

Source: SECUNIA
Type: Vendor Advisory
32791

Source: SREASON
Type: Exploit
4646

Source: CCN
Type: SECTRACK ID: 1021245
Windows Vista Buffer Overflow in CreateIpForwardEntry2() May Let Local Users Gain Elevated Privileges

Source: SECTRACK
Type: Exploit
1021245

Source: CCN
Type: Microsoft Windows Vista Web site
Windows Vista home page

Source: CCN
Type: OSVDB ID: 50287
Microsoft Windows Vista iphlpapi.dll CreateIpForwardEntry2() Function Memory Corruption

Source: CCN
Type: phion AG Web site
netfence entegra

Source: BUGTRAQ
Type: UNKNOWN
20081119 Microsoft VISTA TCP/IP stack buffer overflow

Source: BUGTRAQ
Type: UNKNOWN
20081125 Re: Microsoft VISTA TCP/IP stack buffer overflow

Source: BID
Type: Exploit
32357

Source: CCN
Type: BID-32357
Microsoft Windows Vista 'iphlpapi.dll' Local Kernel Buffer Overflow Vulnerability

Source: XF
Type: UNKNOWN
win-vista-iphlpapi-bo(46742)

Source: XF
Type: UNKNOWN
win-vista-iphlpapi-bo(46742)

Vulnerable Configuration:Configuration 1:
  • cpe:/o:microsoft:windows_vista:*:sp1:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_vista:gold:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/o:microsoft:windows_vista:-:sp1:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    microsoft windows vista * sp1
    microsoft windows vista gold
    microsoft windows vista - sp1