CVE-2007-3681
WinPcap <4.0.1 - RCE
Title source: llmDescription
The IOCTL 9031 (BIOCGSTATS) handler in the NPF.SYS device driver in WinPcap before 4.0.1 allows local users to overwrite memory and execute arbitrary code via malformed Interrupt Request Packet (Irp) parameters.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Mario Ballano Bárcena · clocalwindows
https://www.exploit-db.com/exploits/4165
References (12)
Scores
EPSS
0.0010
EPSS Percentile
27.4%
Details
Status
published
Products (2)
winpcap/winpcap
3.1
winpcap/winpcap
4.0
Published
Jul 11, 2007
Tracked Since
Feb 18, 2026