CVE Vulnerability

CVE-2007-2893

Heap-based buffer overflow in the bx_ne2k_c::rx_frame function in iodev/ne2k.cc in the emulated NE2000 device in Bochs 2.3 allows local users of the guest operating system to write to arbitrary memory locations and gain privileges on the host operating system via vectors that cause TXCNT register values to exceed the device memory size, aka "RX Frame heap overflow."

7.2 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 10

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

Scope

References
Link Resource
http://taviso.decsystem.org/virtsec.pdf Third Party Advisory
http://bugs.gentoo.org/show_bug.cgi?id=188148 Third Party Advisory
http://www.debian.org/security/2007/dsa-1351 Third Party Advisory
http://security.gentoo.org/glsa/glsa-200711-21.xml Third Party Advisory
http://www.securityfocus.com/bid/24246 Third Party Advisory VDB Entry
http://secunia.com/advisories/25470 Third Party Advisory
http://secunia.com/advisories/26364 Third Party Advisory
http://secunia.com/advisories/27715 Third Party Advisory
http://www.vupen.com/english/advisories/2007/1936 Third Party Advisory
http://osvdb.org/36799 Broken Link
https://exchange.xforce.ibmcloud.com/vulnerabilities/34508 Third Party Advisory VDB Entry
Configurations

Configuration 1

cpe:2.3:a:bochs_project:bochs:2.3:-:*:*:*:*:*:*
Information

Published : 2007-05-30 01:30

Updated : 2020-05-19 07:56

NVD link : CVE-2007-2893

Mitre link : CVE-2007-2893

Products Affected
No products.
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer