Denial of Service Vulnerability in QEMU's process_tx_desc Function

Denial of Service Vulnerability in QEMU's process_tx_desc Function

CVE-2015-6815 · LOW Severity

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

The process_tx_desc function in hw/net/e1000.c in QEMU before 2.4.0.1 does not properly process transmit descriptor data when sending a network packet, which allows attackers to cause a denial of service (infinite loop and guest crash) via unspecified vectors.

Learn more about our Network Penetration Testing.