Lucene search

K
cve[email protected]CVE-2007-2454
HistoryMay 02, 2007 - 5:19 p.m.

CVE-2007-2454

2007-05-0217:19:00
web.nvd.nist.gov
28
cve-2007-2454
parallels
buffer overflow
security vulnerability

6.8 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:S/C:C/I:C/A:C

7.7 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

26.6%

Heap-based buffer overflow in the VGA device in Parallels allows local users, with root access to the guest operating system, to terminate the virtual machine and possibly execute arbitrary code in the host operating system via unspecified vectors related to bitblt operations.

Affected configurations

NVD
Node
parallelsparallels_desktop

6.8 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:S/C:C/I:C/A:C

7.7 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

26.6%

Related for CVE-2007-2454