Buffer overflow in Microsoft Windows_7

CVE-2010-1892

The TCP/IP stack in Microsoft Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 does not properly handle malformed IPv6 packets, which allows remote attackers to cause a denial of service (system hang) via mul…

Vulnerability class: Buffer Overflow

EPSS: 0.730 (98.8th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

TA10-222A (US Government Resource, x_refsource_CERT, third-party-advisory)
MS10-058 (x_refsource_MS, vendor-advisory)
oval:org.mitre.oval:def:11845 (x_refsource_OVAL, signature, vdb-entry)