[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248392

 
 

909

 
 

195452

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2007-1320Date: (C)2007-05-02   (M)2023-12-22


Multiple heap-based buffer overflows in the cirrus_invalidate_region function in the Cirrus VGA extension in QEMU 0.8.2, as used in Xen and possibly other products, might allow local users to execute arbitrary code via unspecified vectors related to "attempting to mark non-existent regions as dirty," aka the "bitblt" heap overflow.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 7.2
Exploit Score: 3.9
Impact Score: 10.0
 
CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE
  
Reference:
BID-23731
SECUNIA-25073
SECUNIA-25095
SECUNIA-27047
SECUNIA-27085
SECUNIA-27103
SECUNIA-27486
SECUNIA-29129
SECUNIA-30413
SECUNIA-33568
OSVDB-35494
ADV-2007-1597
DSA-1284
DSA-1384
FEDORA-2007-713
FEDORA-2008-4386
FEDORA-2008-4604
MDKSA-2007:203
MDVSA-2008:162
RHSA-2007:0323
SUSE-SR:2009:002
http://taviso.decsystem.org/virtsec.pdf
oval:org.mitre.oval:def:10315

CPE    9
cpe:/o:fedoraproject:fedora:9
cpe:/o:fedoraproject:fedora_core:6
cpe:/o:opensuse:opensuse:11.1
cpe:/o:fedoraproject:fedora:8
...
CWE    1
CWE-787
OVAL    1
oval:org.secpod.oval:def:301614

© SecPod Technologies