Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
PNP_GetDeviceList (upnp_getdevicelist) in UPnP for Microsoft Windows 2000 SP4 and earlier, and possibly Windows XP SP1 and earlier, allows remote attackers to cause a denial of service (memory consumption) via a DCE RPC request that specifies a large output buffer size, a variant of CVE-2006-6296, and a different vulnerability than CVE-2005-2120.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft Windows即插即用拒绝服务漏洞
Vulnerability Description
Microsoft Windows即插即用(PnP)允许操作系统在安装新硬件时能够检测到这些硬件。 Microsoft Windows即插即用服务中存在拒绝服务漏洞。如果攻击者能够向upnp_getdevicelist发送特制请求的话,就可能导致services.exe消耗过多的内存,直到耗尽目标机器的虚拟内存。请注意这个漏洞与MS05-047中所述漏洞无关。
CVSS Information
N/A
Vulnerability Type
N/A