CVE-2007-0948
Published Aug 14, 2007
Last updated 6 years ago
Overview
- Description
- Heap-based buffer overflow in Microsoft Virtual PC 2004 and PC for Mac 7.1 and 7, and Virtual Server 2005 and 2005 R2, allows local guest OS administrators to execute arbitrary code on the host OS via unspecified vectors related to "interaction and initialization of components."
- Source
- secure@microsoft.com
- NVD status
- Modified
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 9.3
- Impact score
- 10
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:virtual_pc:6.1:*:mac:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CA6E4485-33D3-45FB-B8AA-7A7719FC3C9C"
},
{
"criteria": "cpe:2.3:a:microsoft:virtual_pc:7:*:mac:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "19434341-D081-4E86-964E-BBAD8E6EA43C"
},
{
"criteria": "cpe:2.3:a:microsoft:virtual_pc:2004:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1045B8CB-447F-4DFB-BC85-3B671F3E5E0A"
},
{
"criteria": "cpe:2.3:a:microsoft:virtual_server:2005:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3900BDEA-91E7-4534-8262-4A782BA9C19C"
},
{
"criteria": "cpe:2.3:a:microsoft:virtual_server:2005:r2:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DF200B09-73C2-4CA3-81B3-68BBE4D8AA3D"
}
],
"operator": "OR"
}
]
}
]