Vulnerability Details : CVE-2012-6075

Buffer overflow in the e1000_receive function in the e1000 device driver (hw/e1000.c) in QEMU 1.3.0-rc2 and other versions, when the SBP and LPE flags are disabled, allows remote attackers to cause a denial of service (guest OS crash) and possibly execute arbitrary guest code via a large packet.

Vulnerability category: OverflowDenial of service

Published 2013-02-13 01:55:03

Updated 2023-02-13 04:37:52

Source Red Hat, Inc.

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2012-6075

Probability of exploitation activity in the next 30 days: 2.31%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 88 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2012-6075

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Source
9.3	HIGH	AV:N/AC:M/Au:N/C:C/I:C/A:C	8.6	10.0	[email protected]
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

CWE ids for CVE-2012-6075

CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

Assigned by: [email protected] (Primary)

References for CVE-2012-6075

http://lists.opensuse.org/opensuse-updates/2013-04/msg00051.html

Third Party Advisory

CVEs referencing this url
http://rhn.redhat.com/errata/RHSA-2013-0610.html

Third Party Advisory
http://security.gentoo.org/glsa/glsa-201309-24.xml

Third Party Advisory

CVEs referencing this url
http://www.debian.org/security/2013/dsa-2607

Third Party Advisory
http://www.debian.org/security/2013/dsa-2619

Third Party Advisory
http://www.openwall.com/lists/oss-security/2012/12/30/1

Mailing List;Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2013-0599.html

Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2013-January/097541.html

Third Party Advisory
http://www.debian.org/security/2013/dsa-2608

Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2013-January/097575.html

Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2013-0639.html

Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00021.html

Third Party Advisory

CVEs referencing this url
http://rhn.redhat.com/errata/RHSA-2013-0608.html

Third Party Advisory
http://lists.opensuse.org/opensuse-updates/2013-04/msg00052.html

Third Party Advisory

CVEs referencing this url
http://rhn.redhat.com/errata/RHSA-2013-0609.html

Third Party Advisory
http://git.qemu.org/?p=qemu.git%3Ba=commitdiff%3Bh=b0d9ffcd0251161c7c92f94804dcf599dfa3edeb
http://lists.fedoraproject.org/pipermail/package-announce/2013-January/097705.html

Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=889301

Issue Tracking;Third Party Advisory
http://www.securityfocus.com/bid/57420

Third Party Advisory;VDB Entry
http://www.ubuntu.com/usn/USN-1692-1

Third Party Advisory
http://lists.nongnu.org/archive/html/qemu-devel/2012-12/msg00533.html

Patch;Third Party Advisory

Products affected by CVE-2012-6075

Debian » Debian Linux » Version: 6.0
cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux Desktop » Version: 5.0
cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux Desktop » Version: 6.0
cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux Eus » Version: 5.9
cpe:2.3:o:redhat:enterprise_linux_eus:5.9:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux Eus » Version: 6.4
cpe:2.3:o:redhat:enterprise_linux_eus:6.4:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux Server » Version: 5.0
cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux Server » Version: 6.0
cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux Workstation » Version: 5.0
cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux Workstation » Version: 6.0
cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux Server Aus » Version: 6.4
cpe:2.3:o:redhat:enterprise_linux_server_aus:6.4:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux Server Aus » Version: 5.9
cpe:2.3:o:redhat:enterprise_linux_server_aus:5.9:*:*:*:*:*:*:*
Matching versions
Redhat » Virtualization » Version: 3.0
cpe:2.3:a:redhat:virtualization:3.0:*:*:*:*:*:*:*
Matching versions
When used together with: Redhat » Enterprise Linux » Version: 6.0
Suse » Linux Enterprise Server » Version: 11 Update SP1 Ltss Edition
cpe:2.3:o:suse:linux_enterprise_server:11:sp1:*:*:ltss:*:*:*
Matching versions
Canonical » Ubuntu Linux » Version: 12.10
cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*
Matching versions
Canonical » Ubuntu Linux » Version: 10.04
cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*
Matching versions
Canonical » Ubuntu Linux » Version: 11.10
cpe:2.3:o:canonical:ubuntu_linux:11.10:*:*:*:*:*:*:*
Matching versions
Canonical » Ubuntu Linux » Version: 12.04 ESM Edition
cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*
Matching versions
Fedoraproject » Fedora » Version: 17
cpe:2.3:o:fedoraproject:fedora:17:*:*:*:*:*:*:*
Matching versions
Fedoraproject » Fedora » Version: 18
cpe:2.3:o:fedoraproject:fedora:18:*:*:*:*:*:*:*
Matching versions
Fedoraproject » Fedora » Version: 16
cpe:2.3:o:fedoraproject:fedora:16:*:*:*:*:*:*:*
Matching versions
Qemu » Qemu
Versions before (<) 1.3.0
cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*
Matching versions
Opensuse » Opensuse » Version: 12.2
cpe:2.3:o:opensuse:opensuse:12.2:*:*:*:*:*:*:*
Matching versions
Opensuse » Opensuse » Version: 12.1
cpe:2.3:o:opensuse:opensuse:12.1:*:*:*:*:*:*:*
Matching versions