cbcvebase.
CVE-2007-2893
published 2007-05-30

CVE-2007-2893: Heap-based buffer overflow in the bx_ne2k_c::rx_frame function in iodev/ne2k.cc in the emulated NE2000 device in Bochs 2.3 allows local users of the guest…

PriorityP431high7.2CVSS 2.0
AVLACLAuNCCICAC
EPSS
0.46%
36.6th percentile
Heap-based buffer overflow in the bx_ne2k_c::rx_frame function in iodev/ne2k.cc in the emulated NE2000 device in Bochs 2.3 allows local users of the guest operating system to write to arbitrary memory locations and gain privileges on the host operating system via vectors that cause TXCNT register values to exceed the device memory size, aka "RX Frame heap overflow."

Affected

6 ranges
VendorProductVersion rangeFixed in
bochs_projectbochs
bochs_projectbochs>= 0 < 2.3+20070705-12.3+20070705-1
bochs_projectbochs>= 0 < 2.3+20070705-12.3+20070705-1
bochs_projectbochs>= 0 < 2.3+20070705-12.3+20070705-1
bochs_projectbochs>= 0 < 2.3+20070705-12.3+20070705-1
debianbochs< bochs 2.3+20070705-1 (bookworm)bochs 2.3+20070705-1 (bookworm)

CVSS provenance

nvdv2.07.2HIGHAV:L/AC:L/Au:N/C:C/I:C/A:C
osv7.2HIGH
vendor_debian7.2LOW
vendor_redhat7.2HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.