Windows Plug and Play buffer overflowAdded: 03/03/2006
BackgroundThe Windows Plug and Play service allows Windows operating systems to automatically detect and configure a new hardware device, such as a mouse.
ProblemA buffer overflow in the Plug and Play service could allow command execution with administrative privileges.
ResolutionApply the patch referenced in Microsoft Security Bulletin 05-047.
LimitationsRemote, uncredentialed command execution is not possible on Windows XP or Windows Server 2003.
Successful exploitation may cause the target to reboot after disconnection.
Back to exploit index