CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
96.2%
Heap-based buffer overflow in Microsoft Virtual PC 2004 and PC for Mac 7.1 and 7, and Virtual Server 2005 and 2005 R2, allows local guest OS administrators to execute arbitrary code on the host OS via unspecified vectors related to βinteraction and initialization of components.β
Vendor | Product | Version | CPE |
---|---|---|---|
microsoft | virtual_pc | 6.1 | cpe:2.3:a:microsoft:virtual_pc:6.1:*:mac:*:*:*:*:* |
microsoft | virtual_pc | 7 | cpe:2.3:a:microsoft:virtual_pc:7:*:mac:*:*:*:*:* |
microsoft | virtual_pc | 2004 | cpe:2.3:a:microsoft:virtual_pc:2004:*:*:*:*:*:*:* |
microsoft | virtual_server | 2005 | cpe:2.3:a:microsoft:virtual_server:2005:*:*:*:*:*:*:* |
microsoft | virtual_server | 2005 | cpe:2.3:a:microsoft:virtual_server:2005:r2:*:*:*:*:*:* |
secunia.com/advisories/26444
www.securityfocus.com/bid/25298
www.securitytracker.com/id?1018567
www.us-cert.gov/cas/techalerts/TA07-226A.html
www.vupen.com/english/advisories/2007/2873
docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-049
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1259