Buffer overflow in the e1000_receive function in the e1000 device driver (hw/e1000.c) in QEMU 1.3.0-rc2 and other versions, when the SBP and LPE flags are disabled, allows remote malicious users to cause a denial of service (guest OS crash) and possibly execute arbitrary guest code via a large packet.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
qemu qemu |
||
fedoraproject fedora 17 |
||
fedoraproject fedora 16 |
||
fedoraproject fedora 18 |
||
suse linux enterprise server 11 |
||
opensuse opensuse 12.2 |
||
opensuse opensuse 12.1 |
||
redhat enterprise linux server 5.0 |
||
redhat enterprise linux workstation 5.0 |
||
redhat enterprise linux server aus 6.4 |
||
redhat enterprise linux desktop 6.0 |
||
redhat enterprise linux server 6.0 |
||
redhat enterprise linux workstation 6.0 |
||
redhat enterprise linux desktop 5.0 |
||
redhat enterprise linux server aus 5.9 |
||
redhat enterprise linux eus 5.9 |
||
redhat enterprise linux eus 6.4 |
||
redhat virtualization 3.0 |
||
debian debian linux 6.0 |
||
canonical ubuntu linux 11.10 |
||
canonical ubuntu linux 12.10 |
||
canonical ubuntu linux 12.04 |
||
canonical ubuntu linux 10.04 |