ByteOS Network

NVD Vulnerability Details :

CVE-2007-2893

Modified

Source-cve@mitre.org

Published At-30 May, 2007 | 01:30

Updated At-23 Apr, 2026 | 00:35

Heap-based buffer overflow in the bx_ne2k_c::rx_frame function in iodev/ne2k.cc in the emulated NE2000 device in Bochs 2.3 allows local users of the guest operating system to write to arbitrary memory locations and gain privileges on the host operating system via vectors that cause TXCNT register values to exceed the device memory size, aka "RX Frame heap overflow."

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	7.2	HIGH	AV:L/AC:L/Au:N/C:C/I:C/A:C

Type: Primary

Version: 2.0

Base score: 7.2

Base severity: HIGH

Vector:

AV:L/AC:L/Au:N/C:C/I:C/A:C

CPE Matches

bochs_project>>bochs>>2.3

cpe:2.3:a:bochs_project:bochs:2.3:-:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-119	Primary	nvd@nist.gov

CWE ID: CWE-119

Type: Primary

Source: nvd@nist.gov

Vendor Statements

Organization : Red Hat

Last Modified : 2007-11-02T00:00:00

Not vulnerable. This issue did not affect Xen as shipped with Red Hat Enterprise Linux 5.

References

Hyperlink	Source	Resource
http://bugs.gentoo.org/show_bug.cgi?id=188148	cve@mitre.org	Third Party Advisory
http://osvdb.org/36799	cve@mitre.org	Broken Link
http://secunia.com/advisories/25470	cve@mitre.org	Third Party Advisory
http://secunia.com/advisories/26364	cve@mitre.org	Third Party Advisory
http://secunia.com/advisories/27715	cve@mitre.org	Third Party Advisory
http://security.gentoo.org/glsa/glsa-200711-21.xml	cve@mitre.org	Third Party Advisory
http://taviso.decsystem.org/virtsec.pdf	cve@mitre.org	Third Party Advisory
http://www.debian.org/security/2007/dsa-1351	cve@mitre.org	Third Party Advisory
http://www.securityfocus.com/bid/24246	cve@mitre.org	Third Party Advisory VDB Entry
http://www.vupen.com/english/advisories/2007/1936	cve@mitre.org	Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/34508	cve@mitre.org	Third Party Advisory VDB Entry
http://bugs.gentoo.org/show_bug.cgi?id=188148	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory
http://osvdb.org/36799	af854a3a-2127-422b-91ae-364da2661108	Broken Link
http://secunia.com/advisories/25470	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory
http://secunia.com/advisories/26364	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory
http://secunia.com/advisories/27715	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory
http://security.gentoo.org/glsa/glsa-200711-21.xml	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory
http://taviso.decsystem.org/virtsec.pdf	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory
http://www.debian.org/security/2007/dsa-1351	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory
http://www.securityfocus.com/bid/24246	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory VDB Entry
http://www.vupen.com/english/advisories/2007/1936	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/34508	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory VDB Entry