Lucene search
+L

8 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 6:5 a.m.5 views

SUSE CVE-2008-5714

Off-by-one error in monitor.c in Qemu 0.9.1 might make it easier for remote attackers to guess the VNC password, which is limited to seven characters where eight was intended...

7.8CVSS7AI score0.02112EPSS
Exploits0References6
OSV
OSV
added 2008/12/24 6:29 p.m.3 views

DEBIAN-CVE-2008-2382

The protocolclientmsg function in vnc.c in the VNC server in 1 Qemu 0.9.1 and earlier and 2 KVM kvm-79 and earlier allows remote attackers to cause a denial of service infinite loop via a certain message...

5CVSS7AI score0.06619EPSS
Exploits1References1
Prion
Prion
added 2008/12/24 6:29 p.m.23 views

Code injection

Off-by-one error in monitor.c in Qemu 0.9.1 might make it easier for remote attackers to guess the VNC password, which is limited to seven characters where eight was intended...

7.8CVSS6.5AI score0.02112EPSS
Exploits0References12Affected Software1
CVE
CVE
added 2008/12/24 5:0 p.m.86 views

CVE-2008-5714

CVE-2008-5714 is an off-by-one bug in KVM’s VNC password handling that limits VNC passwords to seven characters (where eight were intended), potentially allowing remote attackers to guess the password. Debian’s DSA-1907-1 and OpenVAS/OpenVulnerability entries document the issue in kvm and note th...

7.8CVSS7.4AI score0.02112EPSS
Exploits0References12Affected Software1
UbuntuCve
UbuntuCve
added 2008/12/24 12:0 a.m.34 views

CVE-2008-5714

Off-by-one error in monitor.c in Qemu 0.9.1 might make it easier for remote attackers to guess the VNC password, which is limited to seven characters where eight was intended...

7.8CVSS5.9AI score0.02112EPSS
Exploits0References2
Prion
Prion
added 2008/10/15 8:7 p.m.17 views

Design/Logic Flaw

qemu-make-debian-root in qemu 0.9.1-5 on Debian GNU/Linux allows local users to overwrite arbitrary files via a symlink attack on temporary files and directories...

7.2CVSS6.4AI score0.00486EPSS
Exploits1References12Affected Software1
Prion
Prion
added 2008/05/12 10:20 p.m.25 views

Format string

The driveinit function in QEMU 0.9.1 determines the format of a raw disk image based on the header, which allows local guest users to read arbitrary files on the host by modifying the header to identify a different format, which is used when the guest is restarted...

4.9CVSS6AI score0.00508EPSS
Exploits1References14Affected Software1
UbuntuCve
UbuntuCve
added 2008/03/03 10:44 p.m.32 views

CVE-2008-0928

Qemu 0.9.1 and earlier does not perform range checks for block device read or write requests, which allows guest host users with root privileges to access arbitrary memory and escape the virtual machine...

4.7CVSS7.2AI score0.00369EPSS
Exploits0References3
Rows per page
Query Builder