CVE-2007-5730

high

Description

Heap-based buffer overflow in QEMU 0.8.2, as used in Xen and possibly other products, allows local users to execute arbitrary code via crafted data in the "net socket listen" option, aka QEMU "net socket" heap overflow. NOTE: some sources have used CVE-2007-1321 to refer to this issue as part of "NE2000 network driver and the socket code," but this is the correct identifier for the individual net socket listen vulnerability.

References

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10000

https://exchange.xforce.ibmcloud.com/vulnerabilities/38239

http://www.vupen.com/english/advisories/2007/1597

http://www.securityfocus.com/bid/23731

http://www.redhat.com/support/errata/RHSA-2008-0194.html

http://www.mandriva.com/security/advisories?name=MDVSA-2008:162

http://www.mandriva.com/security/advisories?name=MDKSA-2007:203

http://www.debian.org/security/2007/dsa-1284

http://www.attrition.org/pipermail/vim/2007-October/001842.html

http://taviso.decsystem.org/virtsec.pdf

http://secunia.com/advisories/29963

http://secunia.com/advisories/29129

http://secunia.com/advisories/27486

http://secunia.com/advisories/25095

http://secunia.com/advisories/25073

Details

Source: Mitre, NVD

Published: 2007-10-30

Updated: 2020-12-15

Risk Information

CVSS v2

Base Score: 7.2

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High