[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

250770

 
 

909

 
 

196157

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2007-1366Date: (C)2007-05-02   (M)2023-12-22


QEMU 0.8.2 allows local users to crash a virtual machine via the divisor operand to the aam instruction, as demonstrated by "aam 0x0," which triggers a divide-by-zero error.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 2.1
Exploit Score: 3.9
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality: NONE
Integrity: NONE
Availability: PARTIAL
  
Reference:
BID-23731
SECUNIA-25073
SECUNIA-25095
SECUNIA-29129
OSVDB-35498
ADV-2007-1597
DSA-1284
MDVSA-2008:162
http://lists.gnu.org/archive/html/qemu-devel/2007-04/msg00650.html
http://lists.gnu.org/archive/html/qemu-devel/2007-04/msg00651.html
http://taviso.decsystem.org/virtsec.pdf
qemu-aam-dos(34046)

CPE    3
cpe:/o:debian:debian_linux:3.1
cpe:/o:debian:debian_linux:4.0
cpe:/a:qemu:qemu:0.8.2
OVAL    1
oval:org.secpod.oval:def:301614

© SecPod Technologies