Lucene search

K
cveMitreCVE-2009-1758
HistoryMay 22, 2009 - 11:52 a.m.

CVE-2009-1758

2009-05-2211:52:40
CWE-399
mitre
web.nvd.nist.gov
57
cve-2009-1758
xen
linux kernel
denial of service
nvd

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

5.5

Confidence

High

EPSS

0.001

Percentile

45.5%

The hypervisor_callback function in Xen, possibly before 3.4.0, as applied to the Linux kernel 2.6.30-rc4, 2.6.18, and probably other versions allows guest user applications to cause a denial of service (kernel oops) of the guest OS by triggering a segmentation fault in “certain address ranges.”

Affected configurations

Nvd
Node
linuxlinux_kernelMatch2.6.18x86_32
OR
linuxlinux_kernelMatch2.6.30rc4x86_32
AND
xenxenRange3.3.1
OR
xenxenMatch2.0
OR
xenxenMatch3.0.2
OR
xenxenMatch3.0.3
OR
xenxenMatch3.0.4
OR
xenxenMatch3.1.2
OR
xenxenMatch3.1.3
OR
xenxenMatch3.1.4
OR
xenxenMatch3.2
OR
xenxenMatch3.2.0
OR
xenxenMatch3.2.1
OR
xenxenMatch3.2.2
OR
xenxenMatch3.2.3
OR
xenxenMatch3.3.0
VendorProductVersionCPE
xenxen3.0.4cpe:/a:xen:xen:3.0.4:::
xenxen3.1.4cpe:/a:xen:xen:3.1.4:::
xenxen3.3.0cpe:/a:xen:xen:3.3.0:::
xenxencpe:/a:xen:xen::::
xenxen3.2.2cpe:/a:xen:xen:3.2.2:::
xenxen3.2cpe:/a:xen:xen:3.2:::
xenxen3.2.1cpe:/a:xen:xen:3.2.1:::
xenxen3.0.2cpe:/a:xen:xen:3.0.2:::
xenxen2.0cpe:/a:xen:xen:2.0:::
xenxen3.2.0cpe:/a:xen:xen:3.2.0:::
Rows per page:
1-10 of 141

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

5.5

Confidence

High

EPSS

0.001

Percentile

45.5%