Lucene search
HistoryNov 04, 2014 - 9:55 p.m.
CVE-2013-4149
cve-2013-4149
buffer overflow
virtio_net_load
qemu
nvd
remote code execution
mac table
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.7 High
AI Score
Confidence
High
0.063 Low
EPSS
Percentile
93.7%
Buffer overflow in virtio_net_load function in net/virtio-net.c in QEMU 1.3.0 through 1.7.x before 1.7.2 might allow remote attackers to execute arbitrary code via a large MAC table.
Affected configurations
Node
qemuqemuMatch1.3.0
ORqemuqemuMatch1.3.0rc0
ORqemuqemuMatch1.3.0rc1
ORqemuqemuMatch1.3.0rc2
ORqemuqemuMatch1.3.1
ORqemuqemuMatch1.4.1
ORqemuqemuMatch1.4.2
ORqemuqemuMatch1.5.0
ORqemuqemuMatch1.5.0rc1
ORqemuqemuMatch1.5.0rc2
ORqemuqemuMatch1.5.0rc3
ORqemuqemuMatch1.5.1
ORqemuqemuMatch1.5.2
ORqemuqemuMatch1.5.3
ORqemuqemuMatch1.6.0
ORqemuqemuMatch1.6.0rc1
ORqemuqemuMatch1.6.0rc2
ORqemuqemuMatch1.6.0rc3
ORqemuqemuMatch1.6.1
ORqemuqemuMatch1.6.2
ORqemuqemuMatch1.7.1
Related
debiancve
debiancve
CVE-2013-4149
2014-11-04 21:55:24
ubuntucve
ubuntucve
CVE-2013-4149
2014-02-20 00:00:00
prion
prion
Buffer overflow
2014-11-04 21:55:00
cvelist
cvelist
CVE-2013-4149
2014-11-04 21:00:00
nvd
nvd
CVE-2013-4149
2014-11-04 21:55:24
redhat
redhat
(RHSA-2014:1268) Moderate: qemu-kvm-rhev security update
2014-09-22 00:00:00
(RHSA-2014:0927) Moderate: qemu-kvm security and bug fix update
2014-07-23 00:00:00
nessus
nessus
Oracle Linux 7 : qemu-kvm (ELSA-2014-0927)
2014-07-24 00:00:00
CentOS 7 : qemu-kvm (CESA-2014:0927)
2014-07-26 00:00:00
RHEL 7 : qemu-kvm (RHSA-2014:0927)
2014-07-30 00:00:00
openvas
openvas
Oracle: Security Advisory (ELSA-2014-0927)
2015-10-06 00:00:00
RedHat Update for qemu-kvm RHSA-2014:0927-01
2014-07-28 00:00:00
Fedora Update for qemu FEDORA-2014-6288
2014-05-19 00:00:00
oraclelinux
oraclelinux
qemu-kvm security and bug fix update
2014-07-23 00:00:00
qemu-kvm security, bug fix, and enhancement update
2015-03-11 00:00:00
centos
centos
libcacard, qemu security update
2014-07-25 13:23:24
fedora
fedora
[SECURITY] Fedora 20 Update: qemu-1.6.2-5.fc20
2014-05-16 10:01:41
mageia
mageia
Updated qemu packages fix multiple security vulnerabilities
2014-10-28 14:33:36
ubuntu
ubuntu
QEMU vulnerabilities
2014-09-08 00:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.7 High
AI Score
Confidence
High
0.063 Low
EPSS
Percentile
93.7%
Related for CVE-2013-4149