FrSIRT - Microsoft Windows Web Proxy Automatic Discovery (WPAD) Traffic Routing Vulnerability / Exploit (Security Advisories)

French Security Incident Response Team

French

English

Microsoft Windows Web Proxy Automatic Discovery (WPAD) Traffic Routing Vulnerability

Title : Microsoft Windows Web Proxy Automatic Discovery (WPAD) Traffic Routing Vulnerability
Advisory ID : FrSIRT/ADV-2007-1115
CVE ID : CVE-2007-1692
Rated as : Moderate Risk

Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2007-03-27

Advisory Details

Description

Affected Products

Solution

References

Technical Description

A vulnerability has been identified in Microsoft Windows, which could be exploited by malicious users to gain knowledge of sensitive information [...]

Affected Products

Microsoft Windows Server 2003 Standard Edition (x64)
Microsoft Windows Server 2003 Enterprise Edition (x64)
Microsoft Windows Server 2003 Datacenter Edition (x64)
Microsoft Windows Server 2003 Standard Edition SP1
Microsoft Windows Server 2003 Enterprise Edition SP1
Microsoft Windows Server 2003 Web Edition SP1
Microsoft Windows Server 2003 Enterprise Edition SP1 (Itanium)
Microsoft Windows Server 2003 Datacenter Edition SP1 (Itanium)
Microsoft Windows Server 2003 Standard Edition
Microsoft Windows Server 2003 Enterprise Edition
Microsoft Windows Server 2003 Datacenter Edition
Microsoft Windows Server 2003 Web Edition
Microsoft Windows Server 2003 Datacenter Edition (Itanium)
Microsoft Windows Server 2003 Enterprise Edition (Itanium)
Microsoft Windows Server 2003 R2 Standard Edition
Microsoft Windows Server 2003 R2 Enterprise Edition
Microsoft Windows Server 2003 R2 Datacenter Edition
Microsoft Windows Server 2003 R2 Standard x64 Edition
Microsoft Windows Server 2003 R2 Enterprise x64 Edition
Microsoft Windows Server 2003 R2 Datacenter x64 Edition
Microsoft Windows 2000 Datacenter Server SP4
Microsoft Windows 2000 Advanced Server SP4
Microsoft Windows 2000 Server SP4
Microsoft Windows 2000 Professional Edition
Microsoft Windows Small Business Server 2003 Standard Edition
Microsoft Small Business Server 2000 Standard Edition

Credits

Vulnerability reported by Chris Paget (IOActive)

ChangeLog

2007-03-27 : Initial release

Vulnerability Management

Subscribe to FrSIRT VNS and receive real-time e-mail and SMS alerts when new vulnerabilities, exploits, or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form or by email to updates@frsirt.com.

Mailinglist

	Cisco UCM SIP Remote Denial of Service
	Cisco IOS Denial of Service and Security Bypass Vulnerabilities
	Cisco PIX and ASA Information Disclosure and DoS Vulnerabilities
	Cisco Secure ACS EAP Remote Denial Of Service Vulnerability
	Cisco Products Remote DNS Cache Poisoning Vulnerability
	Cisco Wide Area Application Services CUPS Remote Vulnerability
	Cisco UCM Denial of Service and Authentication Bypass Vulnerabilities

	IBM Lotus Quickr Denial of Service and Security Bypass Vulnerabilities
	IBM Tivoli Netcool/Webtop Multiple Security Bypass Vulnerabilities
	IBM WebSphere Application Server Security Exposure Vulnerabilities
	IBM DB2 Universal Database Multiple Denial of Service
	IBM AIX "swcons" Insecure Permission Privilege Escalation Vulnerability
	IBM WebSphere Application Server Cross Site Scripting Vulnerability
	IBM DB2 CLR Stored Procedures Unspecified Vulnerability

	Microsoft Windows Vista "WRITE_ANDX" Denial of Service Vulnerability
	Microsoft Office OneNote URL Code Execution (MS08-055)
	Microsoft GDI+ Multiple Code Execution Vulnerabilities (MS08-052)
	Microsoft Visual Studio "Msmask32" Code Execution Vulnerability
	Microsoft PowerPoint Command Execution Vulnerabilities (MS08-051)
	Microsoft Windows Messenger Data Disclosure (MS08-050)
	Microsoft Windows Event System Code Execution (MS08-049)