CVE-2015-5225

Published Nov 6, 2015

Last updated 2 years ago

CVSS info 7.2

Overview

Description: Buffer overflow in the vnc_refresh_server_surface function in the VNC display driver in QEMU before 2.4.0.1 allows guest users to cause a denial of service (heap memory corruption and process crash) or possibly execute arbitrary code on the host via unspecified vectors, related to refreshing the server display surface.
Source: secalert@redhat.com
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.2
Impact score: 10
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-119

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:redhat:openstack:5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B152EDF3-3140-4343-802F-F4F1C329F5C3"
          },
          {
            "criteria": "cpe:2.3:a:redhat:openstack:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "31EC146C-A6F6-4C0D-AF87-685286262DAA"
          },
          {
            "criteria": "cpe:2.3:a:redhat:openstack:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9DAA72A4-AC7D-4544-89D4-5B07961D5A95"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:21:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "56BDB5A0-0839-4A20-A003-B8CD56F48171"
          },
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:22:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "253C303A-E577-4488-93E6-68A8DD942C38"
          },
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:23:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E79AB8DD-C907-4038-A931-1A5A4CFB6A5B"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AD6602DD-7B3E-4AD9-940C-D960B77C41C2",
            "versionEndIncluding": "2.4.0"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References