Heap-based Buffer Overflow in Microsoft Virtual PC and Virtual Server Products
CVE-2007-0948

Currently unrated

Key Information:

Vendor: Microsoft
Status: Virtual Pc; Virtual Server
Vendor: CVE Published:; 14 August 2007

Summary

A heap-based buffer overflow vulnerability affects Microsoft's virtualization products, allowing local guest operating system administrators to execute arbitrary code on the host operating system. This issue arises from unspecified interactions and initialization of components, making it critical for administrators to apply security updates to mitigate potential exploits.

References

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

http://www.us-cert.gov/cas/techalerts/TA07-226A.html

third-party-advisoryx_refsource_CERT

http://www.securitytracker.com/id?1018567

vdb-entryx_refsource_SECTRACK

EPSS Score

53% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Aug 14, 2007
Vulnerability Reserved
Feb 14, 2007