CVE Vulnerability

CVE-2007-6227

QEMU 0.9.0 allows local users of a Windows XP SP2 guest operating system to overwrite the TranslationBlock (code_gen_buffer) buffer, and probably have unspecified other impacts related to an "overflow," via certain Windows executable programs, as demonstrated by qemu-dos.com.

7.2 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 10

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

Scope

References
Link Resource
http://www.securityfocus.com/bid/26666
http://www.mandriva.com/security/advisories?name=MDVSA-2008:162
http://secunia.com/advisories/29129
https://exchange.xforce.ibmcloud.com/vulnerabilities/38806
http://www.securityfocus.com/archive/1/484429/100/0/threaded
Configurations

Configuration 1

cpe:2.3:a:qemu:qemu:0.9.0:*:*:*:*:*:*:*
Information

Published : 2007-12-04 06:46

Updated : 2018-10-15 09:51

NVD link : CVE-2007-6227

Mitre link : CVE-2007-6227

Products Affected
No products.
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer