CVE-2007-5730
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2007-5730
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Heap-based buffer overflow in QEMU 0.8.2, as used in Xen and possibly other products, allows local users to execute arbitrary code via crafted data in the "net socket listen" option, aka QEMU "net socket" heap overflow. NOTE: some sources have used CVE-2007-1321 to refer to this issue as part of "NE2000 network driver and the socket code," but this is the correct identifier for the individual net socket listen vulnerability.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
QEMU 缓冲区错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
QEMU(Quick Emulator)是法国法布里斯-贝拉(Fabrice Bellard)个人开发者的一套模拟处理器软件。该软件具有速度快、跨平台等特点。 在QEMU的0.8.2的XEN或其它产品中存在堆缓冲区溢出漏洞,此漏洞允许本地用户通过构造"网络套接字监听"选项的数据引起堆缓冲溢出,从而可以执行任意代码。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2007-5730
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2007-5730
请登录查看更多情报信息。
Vendor Advisories for CVE-2007-5730 (13)
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10000vdb-entrysignaturex_refsource_OVAL
Other References for CVE-2007-5730 (3)
- http://taviso.decsystem.org/virtsec.pdfx_refsource_MISC
Same Patch Batch · n/a · 2007-10-30 · 39 CVEs total
| CVE-2007-5731 | Apache Tomcat WebDav远程信息泄露漏洞 | |
| CVE-2007-5723 | NuFW 'sasl.c' samp_send函数缓冲区溢出漏洞 | |
| CVE-2007-5724 | Omnistar Live 'KB.PHP' 跨站脚本攻击漏洞 | |
| CVE-2007-5725 | SMART-SHOP 多个跨站脚本攻击漏洞 | |
| CVE-2007-5726 | Sun Solaris SCTP Init处理远程拒绝服务漏洞 | |
| CVE-2007-5727 | OneOrZero 'common.php' 跨站脚本攻击漏洞 | |
| CVE-2007-5728 | phpPgAdmin 'redirect.php'&login.php 跨站脚本攻击漏洞 | |
| CVE-2007-1321 | QEMU 安全漏洞 | |
| CVE-2007-4277 | Trend Micro病毒扫描引擎Tmxpflt.sys多个本地安全漏洞 | |
| CVE-2007-5729 | QEMU NE2000 缓冲区错误漏洞 | |
| CVE-2007-5722 | 联众ConnectAndEnterRoom ActiveX控件栈溢出漏洞 | |
| CVE-2007-5732 | eLouai's Force Download 'downloadfile.php' 目录遍历漏洞 | |
| CVE-2007-5733 | Japanese PHP Gallery Hosting 'upload.php' 任意文件上传漏洞 | |
| CVE-2007-5734 | efileman 'upload.cgi' 文件上传和访问验证漏洞 | |
| CVE-2007-5735 | efileman 'efileman_config.pm' 文件上传和访问验证漏洞 | |
| CVE-2007-5736 | SeeBlick 'upload.php' 不限制文件上传漏洞 | |
| CVE-2007-5737 | Korean GHBoard 'upload.jsp' 未明不限制文件上传漏洞 | |
| CVE-2007-5738 | The component in Korean GHBoard FlashUpload组件安全绕过漏洞 | |
| CVE-2007-5739 | GHBoard FlashUpload组件'download.jsp'目录遍历漏洞 | |
| CVE-2007-4861 | Quirm SAXON 'news.php' 信息泄露漏洞 |
Showing top 20 of 39 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
V. Comments for CVE-2007-5730
No comments yet