CVE-2007-2894 - Vulnerability Details - OpenCVE

Description

The emulated floppy disk controller in Bochs 2.3 allows local users of the guest operating system to cause a denial of service (virtual machine crash) via unspecified vectors, resulting in a divide-by-zero error.

Published: 2007-05-30

Score: 2.1 Low

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Analysis and contextual insights are available on OpenCVE Cloud.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

n/a

n/a

affected

Version	Status	Constraints
`n/a`	affected	—

Configuration 1 [-]

cpe:2.3:a:bochs_project:bochs:2.3:-:*:*:*:*:*:*

No data.

No data available yet.

Remediation

No vendor fix or workaround currently provided.

Additional remediation guidance may be available on OpenCVE Cloud.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
EUVD	EUVD-2007-2886	The emulated floppy disk controller in Bochs 2.3 allows local users of the guest operating system to cause a denial of service (virtual machine crash) via unspecified vectors, resulting in a divide-by-zero error.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

This CVE is not in the KEV list.

The EPSS score is 0.00114.

Key SSVC decision points have not yet been added.

References

Link	Providers
http://bugs.gentoo.org/show_bug.cgi?id=188148
http://osvdb.org/42119
http://secunia.com/advisories/25470
http://secunia.com/advisories/27715
http://security.gentoo.org/glsa/glsa-200711-21.xml
http://taviso.decsystem.org/virtsec.pdf
http://www.securityfocus.com/bid/24246
http://www.vupen.com/english/advisories/2007/1936
https://exchange.xforce.ibmcloud.com/vulnerabilities/34513

History

No history.

Subscriptions

Bochs Project Bochs

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-05-30T01:00:00.000Z

Updated: 2024-08-07T13:57:54.547Z

Reserved: 2007-05-29T00:00:00.000Z

Link: CVE-2007-2894

Vulnrichment

No data.

NVD

Status : Modified

Published: 2007-05-30T01:30:00.000

Modified: 2026-04-23T00:35:47.467

Link: CVE-2007-2894

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

NVD-CWE-Other

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-05-24T00:00:00.000Z", "descriptions": [{"lang": "en", "value": "The emulated floppy disk controller in Bochs 2.3 allows local users of the guest operating system to cause a denial of service (virtual machine crash) via unspecified vectors, resulting in a divide-by-zero error."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-28T12:57:01.000Z", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "http://bugs.gentoo.org/show_bug.cgi?id=188148"}, {"name": "27715", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/27715"}, {"tags": ["x_refsource_MISC"], "url": "http://taviso.decsystem.org/virtsec.pdf"}, {"name": "42119", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/42119"}, {"name": "GLSA-200711-21", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "http://security.gentoo.org/glsa/glsa-200711-21.xml"}, {"name": "24246", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/24246"}, {"name": "ADV-2007-1936", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2007/1936"}, {"name": "bochs-floppy-disk-dos(34513)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34513"}, {"name": "25470", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/25470"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-2894", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The emulated floppy disk controller in Bochs 2.3 allows local users of the guest operating system to cause a denial of service (virtual machine crash) via unspecified vectors, resulting in a divide-by-zero error."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://bugs.gentoo.org/show_bug.cgi?id=188148", "refsource": "CONFIRM", "url": "http://bugs.gentoo.org/show_bug.cgi?id=188148"}, {"name": "27715", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/27715"}, {"name": "http://taviso.decsystem.org/virtsec.pdf", "refsource": "MISC", "url": "http://taviso.decsystem.org/virtsec.pdf"}, {"name": "42119", "refsource": "OSVDB", "url": "http://osvdb.org/42119"}, {"name": "GLSA-200711-21", "refsource": "GENTOO", "url": "http://security.gentoo.org/glsa/glsa-200711-21.xml"}, {"name": "24246", "refsource": "BID", "url": "http://www.securityfocus.com/bid/24246"}, {"name": "ADV-2007-1936", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2007/1936"}, {"name": "bochs-floppy-disk-dos(34513)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34513"}, {"name": "25470", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/25470"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T13:57:54.547Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://bugs.gentoo.org/show_bug.cgi?id=188148"}, {"name": "27715", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/27715"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://taviso.decsystem.org/virtsec.pdf"}, {"name": "42119", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/42119"}, {"name": "GLSA-200711-21", "tags": ["vendor-advisory", "x_refsource_GENTOO", "x_transferred"], "url": "http://security.gentoo.org/glsa/glsa-200711-21.xml"}, {"name": "24246", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/24246"}, {"name": "ADV-2007-1936", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2007/1936"}, {"name": "bochs-floppy-disk-dos(34513)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34513"}, {"name": "25470", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/25470"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-2894", "datePublished": "2007-05-30T01:00:00.000Z", "dateReserved": "2007-05-29T00:00:00.000Z", "dateUpdated": "2024-08-07T13:57:54.547Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:bochs_project:bochs:2.3:-:*:*:*:*:*:*", "matchCriteriaId": "373CA72E-D731-4433-88E8-72C09EAE1796", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The emulated floppy disk controller in Bochs 2.3 allows local users of the guest operating system to cause a denial of service (virtual machine crash) via unspecified vectors, resulting in a divide-by-zero error."}, {"lang": "es", "value": "El controlador emulado en un disco blando (floppy disk) en Bochs 2.3 permite a usuarios locales del sistema operativo invitado causar una denegaci\u00f3n de servicio (ca\u00edda de la maquina virtual) a trav\u00e9s de vectores sin especificar, resultando en un error de divisi\u00f3n por cero (divide-by-zero)."}], "id": "CVE-2007-2894", "lastModified": "2026-04-23T00:35:47.467", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 2.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2007-05-30T01:30:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "http://bugs.gentoo.org/show_bug.cgi?id=188148"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "http://osvdb.org/42119"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "http://secunia.com/advisories/25470"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "http://secunia.com/advisories/27715"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "http://security.gentoo.org/glsa/glsa-200711-21.xml"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "http://taviso.decsystem.org/virtsec.pdf"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/24246"}, {"source": "cve@mitre.org", "tags": ["Permissions Required"], "url": "http://www.vupen.com/english/advisories/2007/1936"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34513"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://bugs.gentoo.org/show_bug.cgi?id=188148"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "http://osvdb.org/42119"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://secunia.com/advisories/25470"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://secunia.com/advisories/27715"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://security.gentoo.org/glsa/glsa-200711-21.xml"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://taviso.decsystem.org/virtsec.pdf"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/24246"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Permissions Required"], "url": "http://www.vupen.com/english/advisories/2007/1936"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34513"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}