Microsoft Corporation Information for VU#412115

Network device drivers reuse old frame buffer data to pad packets

Status

Unknown. If you are the vendor named above, please contact us to update your status.

Vendor Statement

Microsoft does not ship any Microsoft written drivers that contain the vulnerability. However, we have found some 3rd party drivers and samples in our documentation that, when compiled without alteration, could yield a driver that could contain this issue. We have made corrections to the samples in our documentation and are working with 3rd parties, and have included tests for this issue in our driver certification program.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

Vendor References

None

Addendum

NGSSoftware has investigated this vulnerability and determined that several network drivers shipped with Microsoft Windows Server 20003 are affected. For additional information, please see: