|Date: (C)2015-09-29 (M)2017-11-18|| |
Heap-based buffer overflow in the ne2000_receive function in hw/net/ne2000.c in QEMU before 184.108.40.206 allows guest OS users to cause a denial of service (instance crash) or possibly execute arbitrary code via vectors related to receiving packets.
|CVSS Score: 7.2||Access Vector: LOCAL|
|Exploit Score: 3.9||Access Complexity: LOW|
|Impact Score: 10.0||Authentication: NONE|
| ||Confidentiality: COMPLETE|
| ||Integrity: COMPLETE|
| ||Availability: COMPLETE|