NVD Vulnerability Detail

CVE-2007-2219

Summary	Unspecified vulnerability in the Win32 API on Microsoft Windows 2000, XP SP2, and Server 2003 SP1 and SP2 allows remote attackers to execute arbitrary code via certain parameters to an unspecified function.
Summary	Vulnerabilidad no especificada en en la API Win32 de Microsoft Windows 2000, XP SP2, y Server 2003 SP1 y SP2 permite a atacantes remotos ejecutar código de su elección mediante determinados parámetros para una función no especificada.
Publication Date	June 13, 2007, 5:30 a.m.
Registration Date	Jan. 29, 2021, 2:11 p.m.
Last Update	April 23, 2026, 9:35 a.m.

CVSS2.0 : HIGH
Score	9.3
Vector	AV:N/AC:M/Au:N/C:C/I:C/A:C
攻撃元区分(AV)	ネットワーク
攻撃条件の複雑さ(AC)	中
攻撃前の認証要否(Au)	不要
機密性への影響(C)	高
完全性への影響(I)	高
可用性への影響(A)	高
Get all privileges.	はい
Get user privileges	いいえ
Get other privileges	いいえ
User operation required	はい

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:o:microsoft:windows_2000::sp4::::::*
cpe:2.3:o:microsoft:windows_2003_server:::x64:::::*
cpe:2.3:o:microsoft:windows_2003_server::sp2:x64:::::
cpe:2.3:o:microsoft:windows_2003_server:sp1:::::::*
cpe:2.3:o:microsoft:windows_2003_server:sp1::itanium:::::
cpe:2.3:o:microsoft:windows_2003_server:sp2:::::::*
cpe:2.3:o:microsoft:windows_2003_server:sp2::itanium:::::
cpe:2.3:o:microsoft:windows_xp::gold:professional_x64:::::
cpe:2.3:o:microsoft:windows_xp::sp2::::::*
cpe:2.3:o:microsoft:windows_xp::sp2:professional_x64:::::

Related information, measures and tools

No	URL	refsource
1	http://osvdb.org/35341	secure@microsoft.com
2	http://secunia.com/advisories/25640	secure@microsoft.com
3	http://www.kb.cert.org/vuls/id/457281	secure@microsoft.com
4	http://www.securityfocus.com/archive/1/471947/100/0/threaded	secure@microsoft.com
5	http://www.securityfocus.com/bid/24370	secure@microsoft.com
6	http://www.securitytracker.com/id?1018230	secure@microsoft.com
7	http://www.us-cert.gov/cas/techalerts/TA07-163A.html	secure@microsoft.com
8	http://www.vupen.com/english/advisories/2007/2155	secure@microsoft.com
9	https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-035	secure@microsoft.com
10	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1643	secure@microsoft.com
11	http://osvdb.org/35341	af854a3a-2127-422b-91ae-364da2661108
12	http://secunia.com/advisories/25640	af854a3a-2127-422b-91ae-364da2661108
13	http://www.kb.cert.org/vuls/id/457281	af854a3a-2127-422b-91ae-364da2661108
14	http://www.securityfocus.com/archive/1/471947/100/0/threaded	af854a3a-2127-422b-91ae-364da2661108
15	http://www.securityfocus.com/bid/24370	af854a3a-2127-422b-91ae-364da2661108
16	http://www.securitytracker.com/id?1018230	af854a3a-2127-422b-91ae-364da2661108
17	http://www.us-cert.gov/cas/techalerts/TA07-163A.html	af854a3a-2127-422b-91ae-364da2661108
18	http://www.vupen.com/english/advisories/2007/2155	af854a3a-2127-422b-91ae-364da2661108
19	https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-035	af854a3a-2127-422b-91ae-364da2661108
20	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1643	af854a3a-2127-422b-91ae-364da2661108

Common Vulnerabilities List

Configuration1	or higher	or less	more than	less than
cpe:2.3:o:microsoft:windows_2000::sp4::::::*
cpe:2.3:o:microsoft:windows_2003_server:::x64:::::*
cpe:2.3:o:microsoft:windows_2003_server::sp2:x64:::::
cpe:2.3:o:microsoft:windows_2003_server:sp1:::::::*
cpe:2.3:o:microsoft:windows_2003_server:sp1::itanium:::::
cpe:2.3:o:microsoft:windows_2003_server:sp2:::::::*
cpe:2.3:o:microsoft:windows_2003_server:sp2::itanium:::::
cpe:2.3:o:microsoft:windows_xp::gold:professional_x64:::::
cpe:2.3:o:microsoft:windows_xp::sp2::::::*
cpe:2.3:o:microsoft:windows_xp::sp2:professional_x64:::::