libvirt_proxy <= 0.5.1 Local Privilege Escalation Exploit

No description provided by source. / cve-2009-0036.c libvirtproxy = 0.5.1 Local Privilege Escalation Exploit Jon Oberheide [email protected] http://jon.oberheide.org Information: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0036 Buffer overflow in the proxyReadClientSocket function in...

libvirt libvirt_proxy.c文件本地栈溢出漏洞

BUGTRAQ ID: 33724 CVECAN ID: CVE-2009-0036 libvirt是一套免费、开源的C函数库，支持Linux下的主流虚拟化工具。 libvirt库的proxy/libvirtproxy.c文件中的proxyReadClientSocket函数没有正确地验证报文头，如果本地攻击者发送了特制的代理请求的话就可以触发栈溢出，导致以root用户权限执行任意代码。 libvirt 0.5.1 厂商补丁： libvirt ------- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...

CVE-2009-0036

Buffer overflow in the proxyReadClientSocket function in proxy/libvirtproxy.c in libvirtproxy 0.5.1 might allow local users to gain privileges by sending a portion of the header of a virProxyPacket packet, and then sending the remainder of the packet with crafted values in the header, related to...

DEBIAN-CVE-2009-0036

Buffer overflow in the proxyReadClientSocket function in proxy/libvirtproxy.c in libvirtproxy 0.5.1 might allow local users to gain privileges by sending a portion of the header of a virProxyPacket packet, and then sending the remainder of the packet with crafted values in the header, related to...

Buffer overflow

Buffer overflow in the proxyReadClientSocket function in proxy/libvirtproxy.c in libvirtproxy 0.5.1 might allow local users to gain privileges by sending a portion of the header of a virProxyPacket packet, and then sending the remainder of the packet with crafted values in the header, related to...