CVE-2007-5756
WinPcap < 4.0.2 - Local Privilege Escalation via Crafted IOCTL Requests
Title source: llmDescription
Multiple array index errors in the bpf_filter_init function in NPF.SYS in WinPcap before 4.0.2, when run in monitor mode (aka Table Management Extensions or TME), and as used in Wireshark and possibly other products, allow local users to gain privileges via crafted IOCTL requests.
References (7)
Core 7
Core References
Broken Link third-party-advisory
x_refsource_idefense
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=625
Release Notes x_refsource_confirm
http://www.winpcap.org/misc/changelog.htm
Broken Link, Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1018935
Broken Link, Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/26409
Broken Link, Patch, Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/27676
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/38433
Broken Link vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2007/3835
Scores
EPSS
0.0059
EPSS Percentile
43.3%
Details
CWE
CWE-129
Status
published
Products (1)
winpcap/winpcap
< 4.0.2
Published
Nov 14, 2007
Tracked Since
Feb 18, 2026