libvirt: arbitrary command execution via virConnectBaselineHypervisorCPU and virConnectCompareHypervisorCPU APIs

The virConnectBaselineHypervisorCPU and virConnectCompareHypervisorCPU libvirt APIs accept an "emulator" argument to specify the program providing emulation for a domain. Since v1.2.19, libvirt will execute that program to probe the domain's capabilities. Read-only clients could specify an...

CVE-2019-10168

The virConnectBaselineHypervisorCPU and virConnectCompareHypervisorCPU libvirt APIs, 4.x.x before 4.10.1 and 5.x.x before 5.4.1, accept an "emulator" argument to specify the program providing emulation for a domain. Since v1.2.19, libvirt will execute that program to probe the domain's...

CVE-1999-0863

Buffer overflow in FreeBSD seyon via HOME environmental variable, -emulator argument, -modems argument, or the GUI...

CVE-1999-0821

FreeBSD seyon is vulnerable to local privilege escalation by passing a malicious program through the -emulator argument, enabling a non-privileged user to gain higher privileges. The CVSS v2 base score is 4.6 (MEDIUM) with local attack vector and low complexity. No remediation details are provide...

CVE-1999-0821

FreeBSD seyon allows local users to gain privileges by providing a malicious program in the -emulator argument...

PT-1999-1416 · Freebsd · Freebsd Seyon

Name of the Vulnerable Software and Affected Versions: FreeBSD seyon affected versions not specified Description: The issue is related to a buffer overflow in FreeBSD seyon, which can be triggered via the HOME environmental variable, -emulator argument, -modems argument, or the GUI...