Lucene search
K

22 matches found

OpenVAS
OpenVAS
added 2015/10/08 12:0 a.m.42 views

Oracle: Security Advisory (ELSA-2007-0323)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS7.8AI score0.00633EPSS
Exploits0References2
Prion
Prion
added 2014/12/08 4:59 p.m.36 views

Heap overflow

Heap-based buffer overflow in the Cirrus VGA emulator hw/display/cirrusvga.c in QEMU before 2.2.0 allows local guest users to execute arbitrary code via vectors related to blit regions. NOTE: this vulnerability exists because an incomplete fix for CVE-2007-1320...

4.6CVSS7.7AI score0.00603EPSS
Exploits0References18Affected Software1
CVE
CVE
added 2014/12/08 4:0 p.m.125 views

CVE-2014-8106

CVE-2014-8106 is a heap-based buffer overflow in the Cirrus VGA emulator (Cirrus blit region checks) of QEMU up to 2.2.0. The issue arises from an incomplete fix for CVE-2007-1320, allowing a privileged, local guest user to execute arbitrary code in the host QEMU process space via attacker-contro...

4.6CVSS7.5AI score0.00603EPSS
Exploits0References18Affected Software1
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.39 views

Oracle Linux 5 : Important: / xen (ELSA-2007-0323)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2007-0323 advisory. 3.0.3-25.0.4.el5 - QEmu cirrus bitblit bounds check - CVE-2007-1320 rhbz 296271 - QEmu NE2000 overflow check - CVE-2007-1321 rhbz 296271 - Pygrub guest...

7.2CVSS8.4AI score0.00633EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.33 views

Scientific Linux Security Update : xen on SL5.x i386/x86_64

Detail : Joris van Rantwijk found a flaw in the Pygrub utility which is used as a boot loader for guest domains. A malicious local administrator of a guest domain could create a carefully crafted grub.conf file which would trigger the execution of arbitrary code outside of that domain...

7.2CVSS8.8AI score0.00633EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2009/02/17 12:0 a.m.24 views

Fedora Update for kvm FEDORA-2008-4604

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

7.2CVSS6.6AI score0.00493EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/02/17 12:0 a.m.26 views

Fedora Update for kvm FEDORA-2008-4386

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

7.2CVSS6.6AI score0.00493EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/02/13 12:0 a.m.23 views

Fedora Update for kvm FEDORA-2008-11705

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

7.2CVSS7.7AI score0.06619EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2008/12/29 12:0 a.m.31 views

CVE-2008-4539

Heap-based buffer overflow in the Cirrus VGA implementation in 1 KVM before kvm-82 and 2 QEMU on Debian GNU/Linux and Ubuntu might allow local users to gain privileges by using the VNC console for a connection, aka the LGD-54XX "bitblt" heap overflow. NOTE: this issue exists because of an incorre...

7.2CVSS7.4AI score0.00537EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.37 views

Debian Security Advisory DSA 1384-1 (xen-utils)

The remote host is missing an update to xen-utils announced via advisory DSA 1384-1. OpenVAS Vulnerability Test $Id: deb13841.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1384-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

7.2CVSS1.6AI score0.00633EPSS
Exploits0
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.33 views

Debian Security Advisory DSA 1284-1 (qemu)

The remote host is missing an update to qemu announced via advisory DSA 1284-1. OpenVAS Vulnerability Test $Id: deb12841.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1284-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

7.2CVSS0.8AI score0.00493EPSS
Exploits0
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.28 views

Debian: Security Advisory (DSA-1384-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS6.6AI score0.00633EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.24 views

Debian: Security Advisory (DSA-1284-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS6.7AI score0.00607EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2007/10/09 12:0 a.m.37 views

Debian DSA-1384-1 : xen-utils - several vulnerabilities

Several local vulnerabilities have been discovered in the Xen hypervisor packages which may lead to the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-4993 By use of a specially crafted grub configuration file a domU us...

7.2CVSS9.1AI score0.00633EPSS
Exploits0References7
OSV
OSV
added 2007/10/05 12:0 a.m.34 views

DSA-1384-1 xen-3.0

Bulletin has no description...

7.2CVSS6.6AI score0.00633EPSS
Exploits0
Oracle linux
Oracle linux
added 2007/10/02 12:0 a.m.46 views

Important: xen security update

3.0.3-25.0.4.el5 - QEmu cirrus bitblit bounds check - CVE-2007-1320 rhbz 296271 - QEmu NE2000 overflow check - CVE-2007-1321 rhbz 296271 - Pygrub guest escape - CVE-2007-4993 rhbz 302821...

7.2CVSS1.6AI score0.00633EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2007/05/03 12:0 a.m.31 views

Debian DSA-1284-1 : qemu - several vulnerabilities

Several vulnerabilities have been discovered in the QEMU processor emulator, which may lead to the execution of arbitrary code or denial of service. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-1320 Tavis Ormandy discovered that a memory manageme...

7.2CVSS8.5AI score0.00607EPSS
Exploits0References13
UbuntuCve
UbuntuCve
added 2007/05/02 5:19 p.m.28 views

CVE-2007-1320

Multiple heap-based buffer overflows in the cirrusinvalidateregion function in the Cirrus VGA extension in QEMU 0.8.2, as used in Xen and possibly other products, might allow local users to execute arbitrary code via unspecified vectors related to "attempting to mark non-existent regions as dirty...

7.2CVSS7.7AI score0.00493EPSS
Exploits0References1
NVD
NVD
added 2007/05/02 5:19 p.m.28 views

CVE-2007-1320

Multiple heap-based buffer overflows in the cirrusinvalidateregion function in the Cirrus VGA extension in QEMU 0.8.2, as used in Xen and possibly other products, might allow local users to execute arbitrary code via unspecified vectors related to "attempting to mark non-existent regions as dirty...

7.2CVSS8.9AI score0.00493EPSS
Exploits0References23
OSV
OSV
added 2007/05/02 5:19 p.m.6 views

CVE-2007-1320

Multiple heap-based buffer overflows in the cirrusinvalidateregion function in the Cirrus VGA extension in QEMU 0.8.2, as used in Xen and possibly other products, might allow local users to execute arbitrary code via unspecified vectors related to "attempting to mark non-existent regions as dirty...

7AI score
Exploits0References25
Rows per page
Query Builder