Unrated severityNVD Advisory· Published Jul 11, 2007· Updated Apr 23, 2026

CVE-2007-3681

Description

The IOCTL 9031 (BIOCGSTATS) handler in the NPF.SYS device driver in WinPcap before 4.0.1 allows local users to overwrite memory and execute arbitrary code via malformed Interrupt Request Packet (Irp) parameters.

Affected products

Winpcap/Winpcap2 versions
cpe:2.3:a:winpcap:winpcap:3.1:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:winpcap:winpcap:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:winpcap:winpcap:4.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/25982nvdPatchVendor Advisory
www.securityfocus.com/bid/24829nvdPatch
labs.idefense.com/intelligence/vulnerabilities/display.phpnvd
osvdb.org/37889nvd
securitytracker.com/idnvd
www.securityfocus.com/archive/1/473270/100/0/threadednvd
www.securityfocus.com/archive/1/473297/100/0/threadednvd
www.securityfocus.com/archive/1/473301/100/0/threadednvd
www.vupen.com/english/advisories/2007/2468nvd
www.winpcap.org/misc/changelog.htmnvd
exchange.xforce.ibmcloud.com/vulnerabilities/35309nvd
www.exploit-db.com/exploits/4165nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000