CVE-2007-6227
published 2007-12-04CVE-2007-6227: QEMU 0.9.0 allows local users of a Windows XP SP2 guest operating system to overwrite the TranslationBlock (code_gen_buffer) buffer, and probably have…
PriorityP427high7.2CVSS 2.0
AVLACLAuNCCICAC
EXPLOIT
EPSS
0.71%
48.7th percentile
QEMU 0.9.0 allows local users of a Windows XP SP2 guest operating system to overwrite the TranslationBlock (code_gen_buffer) buffer, and probably have unspecified other impacts related to an "overflow," via certain Windows executable programs, as demonstrated by qemu-dos.com.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | qemu | — | — |
| qemu | qemu | — | — |
CVSS provenance
nvdv2.07.2HIGHAV:L/AC:L/Au:N/C:C/I:C/A:C
vendor_debian7.2LOW
vendor_redhat7.2HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Debian
CVE-2007-6227: qemu - QEMU 0.9.0 allows local users of a Windows XP SP2 guest operating system to over...
vendor_debian·2007·CVSS 7.2
CVE-2007-6227 [HIGH] CVE-2007-6227: qemu - QEMU 0.9.0 allows local users of a Windows XP SP2 guest operating system to over...
QEMU 0.9.0 allows local users of a Windows XP SP2 guest operating system to overwrite the TranslationBlock (code_gen_buffer) buffer, and probably have unspecified other impacts related to an "overflow," via certain Windows executable programs, as demonstrated by qemu-dos.com.
Scope: local
bookworm: resolved
bullseye: resolved
forky: resolved
sid: resolved
trixie: resolved
Red Hat
Non-privileged user can cause the virtual CPU to crash
vendor_redhat·CVSS 7.2
CVE-2007-6227 [HIGH] Non-privileged user can cause the virtual CPU to crash
Non-privileged user can cause the virtual CPU to crash
QEMU 0.9.0 allows local users of a Windows XP SP2 guest operating system to overwrite the TranslationBlock (code_gen_buffer) buffer, and probably have unspecified other impacts related to an "overflow," via certain Windows executable programs, as demonstrated by qemu-dos.com.
Statement: Xen and KVM, as shipped with Red Hat Enterprise Linux 5 by default use only peripheral device emulation of QEMU and are therefore not vulnerable to this issue.
GHSA
GHSA-6p9f-vrqh-5hfv: QEMU 0
ghsa_unreviewed·2022-05-01
CVE-2007-6227 [HIGH] CWE-119 GHSA-6p9f-vrqh-5hfv: QEMU 0
QEMU 0.9.0 allows local users of a Windows XP SP2 guest operating system to overwrite the TranslationBlock (code_gen_buffer) buffer, and probably have unspecified other impacts related to an "overflow," via certain Windows executable programs, as demonstrated by qemu-dos.com.
No detection rules found.
http://secunia.com/advisories/29129http://www.mandriva.com/security/advisories?name=MDVSA-2008:162http://www.securityfocus.com/archive/1/484429/100/0/threadedhttp://www.securityfocus.com/bid/26666https://exchange.xforce.ibmcloud.com/vulnerabilities/38806http://secunia.com/advisories/29129http://www.mandriva.com/security/advisories?name=MDVSA-2008:162http://www.securityfocus.com/archive/1/484429/100/0/threadedhttp://www.securityfocus.com/bid/26666https://exchange.xforce.ibmcloud.com/vulnerabilities/38806
2007-12-04
Published