Microsoft Virtual PC and Virtual Server Heap Overflow Vulnerability

Bugtraq ID:	25298
Class:	Unknown
CVE:	CVE-2007-0948
Remote:	No
Local:	Yes
Published:	Aug 14 2007 12:00AM
Updated:	Apr 19 2013 01:09PM
Credit:	Rafal Wojtczuk of McAfee Avert Labs is credited with discovering this issue.
Vulnerable:	Microsoft Virtual Server 2005 Standard Edition R2 Microsoft Virtual Server 2005 Enterprise Edition R2 Microsoft Virtual Server 2005 Enterprise Edition 0 Microsoft Virtual Server 2005 0 Microsoft Virtual PC for Mac 7 Microsoft Virtual PC for Mac 6.1 Microsoft Virtual PC 2004 SP1 Microsoft Virtual PC 2004 0
Not Vulnerable:

Microsoft Virtual PC and Virtual Server Heap Overflow Vulnerability

Microsoft Virtual PC and Virtual Server are prone to a local heap-overflow vulnerability.

To exploit this issue, attackers must have administrative privileges for the guest operating system.

Attackers may exploit this issue to execute arbitrary code in the context of the host operating system or another guest operating system. Successful exploits can result in a compromise of vulnerable computers.

Microsoft Virtual PC and Virtual Server Heap Overflow Vulnerability

Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Microsoft Virtual PC and Virtual Server Heap Overflow Vulnerability

Solution:
Microsoft released security bulletin MS07-049 and fixes to address this issue.

Update Nov 13, 2007: The vendor has released security bulletin MS07-049 stating that previous updates did not correctly install in certain situations. Users are advised to install the latest available updates.

Please see the referenced bulletin for more information.


Microsoft Virtual PC 2004 SP1

• Microsoft Security Update for Microsoft Virtual PC 2004 SP1 (KB937986)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=17ffe5a2-3551 -4858-93b6-5e25af87d808&displaylang=en

Microsoft Virtual PC 2004 0

• Microsoft Security Update for Microsoft Virtual PC 2004 (KB937986)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=cbdeaa50-7115 -4673-97c4-10009f9c5c42&displaylang=en

Microsoft Virtual PC for Mac 7

• Microsoft Microsoft Virtual PC for Mac 7.0.3 Update
  http://www.microsoft.com/mac/downloads.aspx?pid=download&location=/mac /download/MISC/VPC703.xml&secid=100&ssid=3&flgnosysreq=True

Microsoft Virtual Server 2005 Standard Edition R2

• Microsoft Security Update for Microsoft Virtual Server 2005 R2 - Standard edition (KB937986)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=43fa1327-8e5e -4c92-901f-1ff2a0a087b4&displaylang=en

Microsoft Virtual Server 2005 Enterprise Edition 0

• Microsoft Security Update for Microsoft Virtual Server 2005 - Enterprise edition (KB937986)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=da474b6f-9f0c -43f6-b432-050f7e76967d&displaylang=en

Microsoft Virtual Server 2005 Enterprise Edition R2

• Microsoft Security Update for Microsoft Virtual Server 2005 R2 - Enterprise edition (KB937986)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=c2fc16c4-1fb0 -4c09-b04a-684b40df8517&displaylang=en

Microsoft Virtual PC and Virtual Server Heap Overflow Vulnerability

References:

• Virtual PC Homepage (Microsoft)
  
• Microsoft Security Bulletin MS07-049 (Microsoft)
  
• MS07-049 Vulnerability in Virtual PC and Virtual Server Could Allow Elevation of (Avaya)