Unrated severityNVD Advisory· Published Mar 20, 2007· Updated Apr 23, 2026
CVE-2007-0998
CVE-2007-0998
Description
The VNC server implementation in QEMU, as used by Xen and possibly other environments, allows local users of a guest operating system to read arbitrary files on the host operating system via unspecified vectors related to QEMU monitor mode, as demonstrated by mapping files to a CDROM device. NOTE: some of these details are obtained from third party information.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
16- rhn.redhat.com/errata/RHSA-2007-0114.htmlnvdPatch
- secunia.com/advisories/24575nvdVendor Advisory
- www.vupen.com/english/advisories/2007/1019nvdVendor Advisory
- www.vupen.com/english/advisories/2007/1020nvdVendor Advisory
- www.vupen.com/english/advisories/2007/1021nvdVendor Advisory
- fedoranews.org/cms/node/2802nvd
- fedoranews.org/cms/node/2803nvd
- lists.opensuse.org/opensuse-security-announce/2012-11/msg00017.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2012-11/msg00018.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2014-03/msg00021.htmlnvd
- osvdb.org/34304nvd
- secunia.com/advisories/51413nvd
- www.securityfocus.com/bid/22967nvd
- www.securitytracker.com/idnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/33085nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10486nvd
News mentions
0No linked articles in our index yet.