|Date: (C)2012-01-27 (M)2017-08-29|
|CVSS Score: 7.4||Access Vector: ADJACENT_NETWORK|
|Exploitability Subscore: 4.4||Access Complexity: MEDIUM|
|Impact Subscore: 10.0||Authentication: SINGLE_INSTANCE|
| ||Confidentiality: COMPLETE|
| ||Integrity: COMPLETE|
| ||Availability: COMPLETE|
Heap-based buffer overflow in the process_tx_desc function in the e1000 emulation (hw/e1000.c) in qemu-kvm 0.12, and possibly other versions, allows guest OS users to cause a denial of service (QEMU crash) and possibly execute arbitrary code via crafted legacy mode packets.