Unrated severityNVD Advisory· Published Oct 19, 2007· Updated Apr 23, 2026

CVE-2007-5587

Description

Buffer overflow in Macrovision SafeDisc secdrv.sys before 4.3.86.0, as shipped in Microsoft Windows XP SP2, XP Professional x64 and x64 SP2, Server 2003 SP1 and SP2, and Server 2003 x64 and x64 SP2 allows local users to overwrite arbitrary memory locations and gain privileges via a crafted argument to a METHOD_NEITHER IOCTL, as originally discovered in the wild.

Affected products

Macrovision/Safedisc
cpe:2.3:a:macrovision:safedisc:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

blog.48bits.comnvdExploit
www.us-cert.gov/cas/techalerts/TA07-345A.htmlnvdUS Government Resource
osvdb.org/41429nvd
secunia.com/advisories/27285nvd
securityreason.com/securityalert/3266nvd
www.microsoft.com/technet/security/advisory/944653.mspxnvd
www.reversemode.com/index.phpnvd
www.securityfocus.com/archive/1/482474/100/0/threadednvd
www.securityfocus.com/archive/1/482482/100/0/threadednvd
www.securityfocus.com/archive/1/485268/100/0/threadednvd
www.securityfocus.com/bid/26121nvd
www.securitytracker.com/idnvd
www.symantec.com/enterprise/security_response/weblog/2007/10/privilege_escalation_exploit_i.htmlnvd
www.vupen.com/english/advisories/2007/3537nvd
docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-067nvd
exchange.xforce.ibmcloud.com/vulnerabilities/37284nvd
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4584nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000