[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248038

 
 

909

 
 

194772

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2013-4544Date: (C)2014-05-08   (M)2023-12-22


hw/net/vmxnet3.c in QEMU 2.0.0-rc0, 1.7.1, and earlier allows local guest users to cause a denial of service or possibly execute arbitrary code via vectors related to (1) RX or (2) TX queue numbers or (3) interrupt indices. NOTE: some of these details are obtained from third party information.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 4.9
Exploit Score: 4.4
Impact Score: 6.4
 
CVSS V2 Metrics:
Access Vector: ADJACENT_NETWORK
Access Complexity: MEDIUM
Authentication: SINGLE
Confidentiality: PARTIAL
Integrity: PARTIAL
Availability: PARTIAL
  
Reference:
OSVDB-106013
SECUNIA-58191
USN-2182-1
http://thread.gmane.org/gmane.comp.emulators.qemu/265562
http://git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=3c99afc779c2c78718a565ad8c5e98de7c2c7484
http://git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=8c6c0478996e8f77374e69b6df68655b0b4ba689
http://git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=9878d173f574df74bde0ff50b2f81009fbee81bb
http://git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=f12d048a523780dbda702027d4a91b62af1a08d7
https://bugzilla.redhat.com/show_bug.cgi?id=1087513

CPE    33
cpe:/a:qemu:qemu:1.0.1
cpe:/a:qemu:qemu:1.5.2
cpe:/a:qemu:qemu:1.6.1
cpe:/o:canonical:ubuntu_linux:12.04:-:lts
...
CWE    1
CWE-20
OVAL    12
oval:org.secpod.oval:def:701958
oval:org.secpod.oval:def:106981
oval:org.secpod.oval:def:108885
oval:org.secpod.oval:def:108107
...

© SecPod Technologies