Intrusion PreventionMS.Windows.XP.UPnP.Malformed.HTTP.Header
Description
This indicates an attack attempt against a buffer overflow vulnerability in Microsoft Windows XP.
This issue exists in the Universal Plug and Play (UPnP) service, which listens on ports 1900/UDP and 2869/TCP. The service fails to properly check for malformed HTTP requests before copying user supplied data to a memory buffer that may be insufficiently sized. It may allow remote attackers to execute arbitrary code by sending a crafted HTTP request.
Affected Products
Microsoft Windows XP Tablet PC Edition SP2
Microsoft Windows XP Tablet PC Edition SP1
Microsoft Windows XP Tablet PC Edition
Microsoft Windows XP Professional x64 Edition SP2
Microsoft Windows XP Professional x64 Edition
Microsoft Windows XP Professional SP2
Microsoft Windows XP Professional SP1
Microsoft Windows XP Professional
Microsoft Windows XP Media Center Edition SP2
Microsoft Windows XP Media Center Edition SP1
Microsoft Windows XP Media Center Edition
Microsoft Windows XP Home SP2
Microsoft Windows XP Home SP1
Microsoft Windows XP Home
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Refer to the vendor's web site for suggested work around.
http://www.microsoft.com/technet/security/Bulletin/MS07-019.mspx
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Detail |
|---|---|---|
| 2018-10-16 | 13.473 | Sig Added |
| ID | 14468 |
| Created | Apr 12, 2007 |
| Updated | Nov 15, 2021 |
| Risk |
|
| CVE ID | CVE-2007-1204 |
| Exploit Prediction Score | 92.92% |
| Default Action | drop |
| Active | |
| Affected OS | Windows |
| Affected App | Other |