Lucene search

PRIOn knowledge basePRION:CVE-2012-1515

HistoryApr 02, 2012 - 10:46 a.m.

Design/Logic Flaw

2012-04-0210:46:00

PRIOn knowledge base

www.prio-n.com

7 High

AI Score

Confidence

Low

8.3 High

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:C/I:C/A:C

0.002 Low

EPSS

Percentile

63.7%

JSON

VMware ESXi 3.5, 4.0, and 4.1 and ESX 3.5, 4.0, and 4.1 do not properly implement port-based I/O operations, which allows guest OS users to gain guest OS privileges by overwriting memory locations in a read-only memory block associated with the Virtual DOS Machine.

CPENameOperatorVersion
esxeq4.1
esxeq3.5
esxeq4.0
esxieq4.1
esxieq3.5
esxieq4.0

Name	Operator	Version
esx	eq	4.1
esx	eq	3.5
esx	eq	4.0
esxi	eq	4.1
esxi	eq	3.5
esxi	eq	4.0

References

www.securityfocus.com/bid/52820

www.securitytracker.com/id?1026875

www.us-cert.gov/cas/techalerts/TA12-164A.html

www.vmware.com/security/advisories/VMSA-2012-0006.html

docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-042

exchange.xforce.ibmcloud.com/vulnerabilities/74480

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15209

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17110

7 High

AI Score

Confidence

Low

8.3 High

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:C/I:C/A:C

0.002 Low

EPSS

Percentile

63.7%

JSON

Related for PRION:CVE-2012-1515