CVE-2016-2858 - CERT CVE
ID CVE-2016-2858
Sažetak QEMU, when built with the Pseudo Random Number Generator (PRNG) back-end support, allows local guest OS users to cause a denial of service (process crash) via an entropy request, which triggers arbitrary stack based allocation and memory corruption.
Reference
CVSS
Base: 1.9
Impact: 2.9
Exploitability:3.4
Pristup
VektorSloženostAutentikacija
LOCAL MEDIUM NONE
Impact
PovjerljivostCjelovitostDostupnost
NONE NONE PARTIAL
CVSS vektor AV:L/AC:M/Au:N/C:N/I:N/A:P
Zadnje važnije ažuriranje 12-02-2023 - 23:17
Objavljeno 07-04-2016 - 19:59