CVE-2008-5086

Multiple methods in libvirt 0.3.2 through 0.5.1 do not check if a connection is read-only, which allows local users to bypass intended access restrictions and perform administrative actions...

USN-694-1: libvirt vulnerability

It was discovered that libvirt did not mark certain operations as read-only. A local attacker may be able to perform privileged actions such as migrating virtual machines, adjusting autostart flags, or accessing privileged data in the virtual machine memory and disks...

CVE-2008-4405

xend in Xen 3.0.3 does not properly limit the contents of the /local/domain xenstore directory tree, and does not properly restrict a guest VM's write access within this tree, which allows guest OS users to cause a denial of service and possibly have unspecified other impact by writing to 1...

Design/Logic Flaw

xend in Xen 3.0.3 does not properly limit the contents of the /local/domain xenstore directory tree, and does not properly restrict a guest VM's write access within this tree, which allows guest OS users to cause a denial of service and possibly have unspecified other impact by writing to 1...

PT-2012-6367 · Opensuse +3 · Libvirt +3

Name of the Vulnerable Software and Affected Versions: libvirt versions prior to 0.10.2 Description: The issue affects the libvirt package in the openSUSE operating system, potentially leading to breaches of confidentiality, integrity, and availability of protected information. Exploitation can...