VYPR
Unrated severityNVD Advisory· Published May 2, 2007· Updated Jun 16, 2026

CVE-2007-2454

CVE-2007-2454

Description

Heap-based buffer overflow in the VGA device in Parallels allows local users, with root access to the guest operating system, to terminate the virtual machine and possibly execute arbitrary code in the host operating system via unspecified vectors related to bitblt operations.

Affected products

2
  • cpe:2.3:a:parallels:parallels_desktop:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:parallels:parallels_desktop:*:*:*:*:*:*:*:*
    • (no CPE)

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.