FreeBSD : qemu -- Translation Block Local Denial of Service Vulnerability (30f5ca1d-a90b-11dc-bf13-0211060005df)

High Nessus Plugin ID 29689


The remote FreeBSD host is missing one or more security-related updates.


SecurityFocus reports :

QEMU is prone to a local denial-of-service vulnerability because it fails to perform adequate boundary checks when handling user-supplied input.

Attackers can exploit this issue to cause denial-of-service conditions. Given the nature of the issue, attackers may also be able to execute arbitrary code, but this has not been confirmed.


Update the affected packages.

See Also

Plugin Details

Severity: High

ID: 29689

File Name: freebsd_pkg_30f5ca1da90b11dcbf130211060005df.nasl

Version: $Revision: 1.13 $

Type: local

Published: 2007/12/13

Modified: 2015/05/13

Dependencies: 12634

Risk Information

Risk Factor: High


Base Score: 7.2

Temporal Score: 6

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:qemu, p-cpe:/a:freebsd:freebsd:qemu-devel, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2007/12/12

Vulnerability Publication Date: 2007/11/30

Reference Information

CVE: CVE-2007-6227

BID: 26666

CWE: 119