CVE-2007-3681

N/A Unknown

Published: July 11, 2007 Modified: April 23, 2026

Description

The IOCTL 9031 (BIOCGSTATS) handler in the NPF.SYS device driver in WinPcap before 4.0.1 allows local users to overwrite memory and execute arbitrary code via malformed Interrupt Request Packet (Irp) parameters.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=550

Source: cve@mitre.org

http://osvdb.org/37889

Source: cve@mitre.org

http://secunia.com/advisories/25982

Source: cve@mitre.org

Patch Vendor Advisory

http://securitytracker.com/id?1018350

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/473270/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/473297/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/473301/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/24829

Source: cve@mitre.org

Patch

http://www.vupen.com/english/advisories/2007/2468

Source: cve@mitre.org

http://www.winpcap.org/misc/changelog.htm

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/35309

Source: cve@mitre.org

https://www.exploit-db.com/exploits/4165

Source: cve@mitre.org

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=550