|
|
CVE Reference: CVE-2007-2893 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2007-2893 |
|
|
Description: Heap-based buffer overflow in the bx_ne2k_c::rx_frame function in iodev/ne2k.cc in the emulated NE2000 device in Bochs 2.3 allows local users of the guest operating system to write to arbitrary memory locations and gain privileges on the host operating system via vectors that cause TXCNT register values to exceed the device memory size, aka "RX Frame heap overflow." |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/34508 SAID Secunia Advisory: SA25470 Secunia Advisory: SA26364 Secunia Advisory: SA27715 MISC http://taviso.decsystem.org/virtsec.pdf GENTOO http://security.gentoo.org/glsa/glsa-200711-21.xml DEBIAN http://www.debian.org/security/2007/dsa-1351 CONFIRM http://bugs.gentoo.org/show_bug.cgi?id=188148 BID 24246 |
|
| Return to the previous page. |
