CVE-2011-4111

Published Feb 26, 2014

Last updated 2 years ago

Overview

Description: Buffer overflow in the ccid_card_vscard_handle_message function in hw/ccid-card-passthru.c in QEMU before 0.15.2 and 1.x before 1.0-rc4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted VSC_ATR message.
Source: secalert@redhat.com
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 6.8
Impact score: 10
Exploitability score: 3.2
Vector string: AV:A/AC:H/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-119

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2F6AB192-9D7D-4A9A-8995-E53A9DE9EAFC"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_supplementary:6.1.z:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "21477282-049D-4287-ACC8-E293DB453084"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AC9E207D-3C73-468C-9663-1FA6738C7241",
            "versionEndIncluding": "0.15.1"
          },
          {
            "criteria": "cpe:2.3:a:qemu:qemu:0.15.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "79ED37C5-68C3-428C-9FB6-E9F7E085AE0C"
          },
          {
            "criteria": "cpe:2.3:a:qemu:qemu:0.15.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EE446FA1-FBB8-4B76-904C-F4664703BFBD"
          },
          {
            "criteria": "cpe:2.3:a:qemu:qemu:0.15.0:rc2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "80621FFA-6189-47CD-9A6A-1D5A781862AE"
          },
          {
            "criteria": "cpe:2.3:a:qemu:qemu:1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5E66599D-9EC4-409C-BD26-62EC3B001984"
          },
          {
            "criteria": "cpe:2.3:a:qemu:qemu:1.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1CF80F8D-5402-4AA6-ABB1-EEBD8EA0BBDB"
          },
          {
            "criteria": "cpe:2.3:a:qemu:qemu:1.0:rc2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "92FE0592-3611-4F93-A0B2-73ADFBF87FB8"
          },
          {
            "criteria": "cpe:2.3:a:qemu:qemu:1.0:rc3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "795EDF48-6FE0-4DE7-A57F-632BF0043677"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References