CVE-2007-1531

Published: Mar 20, 2007Modified: Apr 23, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

Microsoft Windows XP and Vista overwrites ARP table entries included in gratuitous ARP, which allows remote attackers to cause a denial of service (loss of network access) by sending a gratuitous ARP for the address of the Vista host.

Affected (2)

Products: Microsoft: Windows Vista, Windows Xp

Microsoft

2 products

Windows Vista

Windows Xp

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Microsoft Windows Vista	All versions
Microsoft Windows Xp	All versions

Related CWEs

CWE-399

References (12)

http://osvdb.org/33664

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/462793/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/464617/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/23266

Source: cve@mitre.org

http://www.symantec.com/avcenter/reference/Vista_Network_Attack_Surface_RTM.pdf

Source: cve@mitre.org

http://www.symantec.com/enterprise/security_response/weblog/2007/04/microsofts_inaccurate_teredo_d.html

Source: cve@mitre.org

http://osvdb.org/33664