Heap-based buffer overflow in the PCNET controller in QEMU allows remote attackers to execute arbitrary code by sending a packet with TXSTATUS_STARTPACKET set and then a crafted packet with TXSTATUS_DEVICEOWNS set.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
Configuration 5 (hide)
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
|
Configuration 8 (hide)
|
Configuration 9 (hide)
|
History
11 Feb 2022, 05:40
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://www.arista.com/en/support/advisories-notices/security-advisories/1180-security-advisory-13 - Third Party Advisory | |
CPE | cpe:2.3:o:arista:eos:4.15:*:*:*:*:*:*:* cpe:2.3:o:arista:eos:4.14:*:*:*:*:*:*:* cpe:2.3:o:arista:eos:4.12:*:*:*:*:*:*:* cpe:2.3:o:arista:eos:4.13:*:*:*:*:*:*:* |
26 Jan 2022, 14:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
Information
Published : 2015-06-15 15:59
Updated : 2024-02-04 18:53
NVD link : CVE-2015-3209
Mitre link : CVE-2015-3209
CVE.ORG link : CVE-2015-3209
JSON object : View
Products Affected
redhat
- enterprise_linux_server
- enterprise_linux_workstation
- enterprise_linux_server_tus
- openstack
- enterprise_linux_eus
- enterprise_linux_server_aus
- enterprise_linux
- virtualization
- enterprise_linux_desktop
suse
- linux_enterprise_debuginfo
- linux_enterprise_software_development_kit
- linux_enterprise_desktop
- linux_enterprise_server
fedoraproject
- fedora
juniper
- junos_space
qemu
- qemu
canonical
- ubuntu_linux
debian
- debian_linux
arista
- eos
CWE
CWE-787
Out-of-bounds Write