CVE-2007-5729 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2007-5729
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-5729

Description: The NE2000 emulator in QEMU 0.8.2 allows local users to execute arbitrary code by writing Ethernet frames with a size larger than the MTU to the EN0_TCNT register, which triggers a heap-based buffer overflow in the slirp library, aka NE2000 "mtu" heap overflow. NOTE: some sources have used CVE-2007-1321 to refer to this issue as part of "NE2000 network driver and the socket code," but this is the correct identifier for the mtu overflow vulnerability.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/38238 VIM http://www.attrition.org/pipermail/vim/2007-October/001842.html SUSE http://lists.opensuse.org/opensuse-security-announce/2009-01/msg00004.html SAID Secunia Advisory: SA25073 Secunia Advisory: SA27486 Secunia Advisory: SA25095 Secunia Advisory: SA29129 Secunia Advisory: SA33568 OSVDB 42986 MISC http://taviso.decsystem.org/virtsec.pdf MANDRIVA http://www.mandriva.com/security/advisories?name=MDVSA-2008:162 http://www.mandriva.com/security/advisories?name=MDKSA-2007:203 DEBIAN http://www.debian.org/security/2007/dsa-1284 BID 23731

Return to the previous page.