PT-2007-6714 · Qemu · Qemu+1
Tavis Ormandy
·
Published
2007-10-30
·
Updated
2020-12-16
·
CVE-2007-5729
CVSS v2.0
7.2
High
| Vector | AV:L/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
QEMU version 0.8.2
Description
The issue allows local users to execute arbitrary code by writing Ethernet frames with a size larger than the MTU to the EN0 TCNT register, triggering a heap-based buffer overflow in the slirp library.
Recommendations
For QEMU version 0.8.2, update to a version that fixes the heap-based buffer overflow in the slirp library to prevent exploitation.
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Qemu
Slirp Library