#VU41161 Buffer overflow in QEMU - CVE-2013-4149

Cybersecurity Help s.r.o.

Published: 2014-11-04 | Updated: 2020-08-10

Vulnerability identifier: #VU41161

Vulnerability risk: Medium

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2013-4149

CWE-ID: CWE-119

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
QEMU
Client/Desktop applications / Virtualization software

Vendor: QEMU

Description

The vulnerability allows a remote non-authenticated attacker to read and manipulate data.

Buffer overflow in virtio_net_load function in net/virtio-net.c in QEMU 1.3.0 through 1.7.x before 1.7.2 might allow remote attackers to execute arbitrary code via a large MAC table.

Mitigation
Install update from vendor's website.

Vulnerable software versions

QEMU: 1.3.0 - 1.7.1

External links
https://git.qemu.org/?p=qemu.git;a=commit;h=98f93ddd84800f207889491e0b5d851386b459cf
https://lists.fedoraproject.org/pipermail/package-announce/2014-May/133345.html
https://lists.nongnu.org/archive/html/qemu-stable/2014-07/msg00187.html
https://rhn.redhat.com/errata/RHSA-2014-0927.html

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in QEMU