cbcvebase.

Microsoft Virtual Pc vulnerabilities

4 known vulnerabilities affecting microsoft/virtual_pc.

Total CVEs
4
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL3MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2010-1225P2CRITICALCVSS 9.3PoCv20072010-04-01
CVE-2010-1225 [CRITICAL] CWE-264 CVE-2010-1225: The memory-management implementation in the Virtual Machine Monitor (aka VMM or hypervisor) in Micro The memory-management implementation in the Virtual Machine Monitor (aka VMM or hypervisor) in Microsoft Virtual PC 2007 Gold and SP1, Virtual Server 2005 Gold and R2 SP1, and Windows Virtual PC does not properly restrict access from the guest OS to memory locations in the VMM work area, which allows context-dependent attackers to bypass certain ant
nvd
CVE-2007-0948P3CRITICALCVSS 9.3v6.1v7+1 more2007-08-14
CVE-2007-0948 [CRITICAL] CVE-2007-0948: Heap-based buffer overflow in Microsoft Virtual PC 2004 and PC for Mac 7.1 and 7, and Virtual Server Heap-based buffer overflow in Microsoft Virtual PC 2004 and PC for Mac 7.1 and 7, and Virtual Server 2005 and 2005 R2, allows local guest OS administrators to execute arbitrary code on the host OS via unspecified vectors related to "interaction and initialization of components."
nvd
CVE-2009-1542P3CRITICALCVSS 9.0v2004v20072009-07-15
CVE-2009-1542 [CRITICAL] CWE-264 CVE-2009-1542: The Virtual Machine Monitor (VMM) in Microsoft Virtual PC 2004 SP1, 2007, and 2007 SP1, and Microsof The Virtual Machine Monitor (VMM) in Microsoft Virtual PC 2004 SP1, 2007, and 2007 SP1, and Microsoft Virtual Server 2005 R2 SP1, does not enforce CPU privilege-level requirements for all machine instructions, which allows guest OS users to execute arbitrary kernel-mode code and gain privileges within the guest OS via a crafted application, aka "Vir
nvd
CVE-2004-0115P4MEDIUMCVSS 4.6v6.0v6.1+1 more2004-03-03
CVE-2004-0115 [MEDIUM] CVE-2004-0115: VirtualPC_Services in Microsoft Virtual PC for Mac 6.0 through 6.1 allows local attackers to truncat VirtualPC_Services in Microsoft Virtual PC for Mac 6.0 through 6.1 allows local attackers to truncate and overwrite arbitrary files, and execute arbitrary code, via a symlink attack on the VPCServices_Log temporary file.
nvd
Microsoft Virtual Pc vulnerabilities | cvebase