| Max CVSS | 7.2 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-5730 | 7.2 |
Heap-based buffer overflow in QEMU 0.8.2, as used in Xen and possibly other products, allows local users to execute arbitrary code via crafted data in the "net socket listen" option, aka QEMU "net socket" heap overflow. NOTE: some sources have used
|
15-12-2020 - 23:48 | 30-10-2007 - 22:46 | |
| CVE-2008-0928 | 4.7 |
Qemu 0.9.1 and earlier does not perform range checks for block device read or write requests, which allows guest host users with root privileges to access arbitrary memory and escape the virtual machine.
|
02-11-2020 - 14:39 | 03-03-2008 - 22:44 | |
| CVE-2008-1944 | 7.2 |
Buffer overflow in the backend framebuffer of XenSource Xen Para-Virtualized Framebuffer (PVFB) Message 3.0 through 3.0.3 allows local users to cause a denial of service (SDL crash) and possibly execute arbitrary code via "bogus screen updates," rela
|
29-09-2017 - 01:30 | 14-05-2008 - 18:20 | |
| CVE-2008-2004 | 4.9 |
The drive_init function in QEMU 0.9.1 determines the format of a raw disk image based on the header, which allows local guest users to read arbitrary files on the host by modifying the header to identify a different format, which is used when the gue
|
29-09-2017 - 01:30 | 12-05-2008 - 22:20 | |
| CVE-2008-1943 | 2.1 |
Buffer overflow in the backend of XenSource Xen Para Virtualized Frame Buffer (PVFB) 3.0 through 3.1.2 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a crafted description of a shared framebuffer. Poss
|
29-09-2017 - 01:30 | 14-05-2008 - 18:20 | |
| CVE-2007-3919 | 6.0 |
(1) xenbaked and (2) xenmon.py in Xen 3.1 and earlier allow local users to truncate arbitrary files via a symlink attack on /tmp/xenq-shm.
|
29-09-2017 - 01:29 | 28-10-2007 - 17:08 |