Lucene search
K

13 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in libslirp

An invalid pointer initialization issue was discovered in the SLiRP networking implementation of QEMU. The flaw resides in the tftpinput function and can occur when processing an UDP packet that is smaller than the size of the ‘tftpt’ structure. This issue may lead to out-of-bounds read access or...

3.8CVSS6.7AI score0.00326EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2007-5700

Malware in sbrugna...

7.2CVSS6AI score0.00585EPSS
Exploits0References17
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2020-7211

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tftp.c in libslirp 4.1.0, as used in QEMU 4.2.0, does not prevent ..\ directory traversal on Windows. CVE-2020-7211 Note that Nessus relies on the presence of t...

7.5CVSS7.7AI score0.04141EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 6:10 a.m.5 views

SUSE CVE-2007-5729

The NE2000 emulator in QEMU 0.8.2 allows local users to execute arbitrary code by writing Ethernet frames with a size larger than the MTU to the EN0TCNT register, which triggers a heap-based buffer overflow in the slirp library, aka NE2000 "mtu" heap overflow. NOTE: some sources have used...

7.2CVSS8.2AI score0.00585EPSS
Exploits0References4
OSV
OSV
added 2021/06/15 9:15 p.m.2 views

DEBIAN-CVE-2021-3595

An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the tftpinput function and could occur while processing a udp packet that is smaller than the size of the 'tftpt' structure. This issue may lead to out-of-bounds read access or...

3.8CVSS6.1AI score0.00326EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2020/11/10 8:0 a.m.1 views

tcp_emu in tcp_subr.c in libslirp 4.1.0 as used in QEMU 4.2.0 mismanages memory as demonstrated by IRC DCC commands in EMU_IRC. This can cause a heap-based buffer overflow or other out-of-bounds access which can lead to a DoS or potential execute arbitrary code.

...

6.8CVSS9.3AI score0.03566EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/08/18 7:0 a.m.2 views

tftp.c in libslirp 4.1.0 as used in QEMU 4.2.0 does not prevent ..\ directory traversal on Windows.

...

7.5CVSS8.2AI score0.04141EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2015/10/30 9:23 a.m.32 views

CVE-2007-5729

The NE2000 emulator in QEMU 0.8.2 allows local users to execute arbitrary code by writing Ethernet frames with a size larger than the MTU to the EN0TCNT register, which triggers a heap-based buffer overflow in the slirp library, aka NE2000 "mtu" heap overflow. NOTE: some sources have used...

7.2CVSS7.8AI score0.00585EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2007/10/30 10:46 p.m.39 views

CVE-2007-5729

The NE2000 emulator in QEMU 0.8.2 allows local users to execute arbitrary code by writing Ethernet frames with a size larger than the MTU to the EN0TCNT register, which triggers a heap-based buffer overflow in the slirp library, aka NE2000 "mtu" heap overflow. NOTE: some sources have used...

7.2CVSS6.2AI score0.00585EPSS
Exploits0References1
Prion
Prion
added 2007/10/30 10:46 p.m.24 views

Heap overflow

The NE2000 emulator in QEMU 0.8.2 allows local users to execute arbitrary code by writing Ethernet frames with a size larger than the MTU to the EN0TCNT register, which triggers a heap-based buffer overflow in the slirp library, aka NE2000 "mtu" heap overflow. NOTE: some sources have used...

7.2CVSS7.4AI score0.00585EPSS
Exploits0References15Affected Software3
OSV
OSV
added 2007/10/30 10:46 p.m.3 views

DEBIAN-CVE-2007-5729

The NE2000 emulator in QEMU 0.8.2 allows local users to execute arbitrary code by writing Ethernet frames with a size larger than the MTU to the EN0TCNT register, which triggers a heap-based buffer overflow in the slirp library, aka NE2000 "mtu" heap overflow. NOTE: some sources have used...

7.2CVSS8.1AI score0.00585EPSS
Exploits0References1
Cvelist
Cvelist
added 2007/10/30 10:0 p.m.28 views

CVE-2007-5729

The NE2000 emulator in QEMU 0.8.2 allows local users to execute arbitrary code by writing Ethernet frames with a size larger than the MTU to the EN0TCNT register, which triggers a heap-based buffer overflow in the slirp library, aka NE2000 "mtu" heap overflow. NOTE: some sources have used...

7.1AI score0.00585EPSS
Exploits0References15
Debian CVE
Debian CVE
added 2007/10/30 10:0 p.m.30 views

CVE-2007-5729

The NE2000 emulator in QEMU 0.8.2 allows local users to execute arbitrary code by writing Ethernet frames with a size larger than the MTU to the EN0TCNT register, which triggers a heap-based buffer overflow in the slirp library, aka NE2000 "mtu" heap overflow. NOTE: some sources have used...

7.2CVSS7.3AI score0.00585EPSS
Exploits0
Rows per page
Query Builder