Heap overflow
Heap-based buffer overflow in the ne2000receive function in hw/net/ne2000.c in QEMU before 2.4.0.1 allows guest OS users to cause a denial of service instance crash or possibly execute arbitrary code via vectors related to receiving packets...