CVE-2007-2894 - The emulated floppy disk controller in Bochs 2.3 allows local users of the guest operating system to

CVE-2007-2894

Summary

The emulated floppy disk controller in Bochs 2.3 allows local users of the guest operating system to cause a denial of service (virtual machine crash) via unspecified vectors, resulting in a divide-by-zero error.

References

http://bugs.gentoo.org/show_bug.cgi?id=188148
http://osvdb.org/42119
http://secunia.com/advisories/25470
http://secunia.com/advisories/27715
http://security.gentoo.org/glsa/glsa-200711-21.xml
http://taviso.decsystem.org/virtsec.pdf
http://www.securityfocus.com/bid/24246
http://www.vupen.com/english/advisories/2007/1936
https://exchange.xforce.ibmcloud.com/vulnerabilities/34513

Vulnerable Configurations

cpe:2.3:a:bochs_project:bochs:2.3:-:*:*:*:*:*:*
cpe:2.3:a:bochs_project:bochs:2.3:-:*:*:*:*:*:*

CVSS

Base:	2.1 (as of 19-05-2020 - 19:58)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:L/AC:L/Au:N/C:N/I:N/A:P

refmap via4

bid	24246
confirm	http://bugs.gentoo.org/show_bug.cgi?id=188148
gentoo	GLSA-200711-21
misc	http://taviso.decsystem.org/virtsec.pdf
osvdb	42119
secunia	25470 27715
vupen	ADV-2007-1936
xf	bochs-floppy-disk-dos(34513)

Last major update

19-05-2020 - 19:58

Published

30-05-2007 - 01:30

Last modified

19-05-2020 - 19:58