CVE-2007-5730

HIGH Year: 2007
CVSS v2 Score
7.2
High
Weakness Type
CWE-787
View all →

Vulnerability Description

Heap-based buffer overflow in QEMU 0.8.2, as used in Xen and possibly other products, allows local users to execute arbitrary code via crafted data in the "net socket listen" option, aka QEMU "net socket" heap overflow. NOTE: some sources have used CVE-2007-1321 to refer to this issue as part of "NE2000 network driver and the socket code," but this is the correct identifier for the individual net socket listen vulnerability.

Related Vulnerabilities

CVE-2016-9343

CRITICAL
CVSS:10.0(Critical)

An issue was discovered in Rockwell Automation Logix5000 Programmable Automation Controller FRN 16.00 through 21.00 (excluding all firmware versions prior to FRN 16.00, which are not affected). By sen...

CWE-7872016

CVE-2017-2853

CRITICAL
CVSS:10.0(Critical)

An exploitable Code Execution vulnerability exists in the RequestForPatientInfoEEGfile functionality of Natus Xltek NeuroWorks 8. A specially crafted network packet can cause a stack buffer overflow r...

CWE-7872017

CVE-2017-2868

CRITICAL
CVSS:10.0(Critical)

An exploitable code execution vulnerability exists in the NewProducerStream functionality of Natus Xltek NeuroWorks 8. A specially crafted network packet can cause a stack buffer overflow resulting in...

CWE-7872017

CVE-2017-2869

CRITICAL
CVSS:10.0(Critical)

An exploitable code execution vulnerability exists in the OpenProducer functionality of Natus Xltek NeuroWorks 8. A specially crafted network packet can cause a stack buffer overflow resulting in code...

CWE-7872017

CVE-2018-10718

CRITICAL
CVSS:10.0(Critical)

Stack-based buffer overflow in Activision Infinity Ward Call of Duty Modern Warfare 2 before 2018-04-26 allows remote attackers to execute arbitrary code via crafted packets.

CWE-7872018

CVE-2018-17160

CRITICAL
CVSS:10.0(Critical)

In FreeBSD before 11.2-STABLE(r341486) and 11.2-RELEASE-p6, insufficient bounds checking in one of the device models provided by bhyve can permit a guest operating system to overwrite memory in the bh...

CWE-7872018