VMware View Server Detection

VMware View Server, formerly known as VMware Virtual Desktop Infrastructure, is installed on the remote host. VMware View Server is an OS virtual desktop solution for personalized virtual desktops as a managed service from a virtualized platform. C Tenable Network Security, Inc...

CVE-2012-2625

CVE-2012-2625 affects the PyGrub boot loader in Xen unstable before changeset 25589:60f09d1ab1fe, and in Xen 4.2.x and 4.1.x. It allows local para-virtualized guest users to cause a denial of service by triggering memory consumption when loading a kernel image that is large and compressed (either...

CVE-2012-2625

The PyGrub boot loader in Xen unstable before changeset 25589:60f09d1ab1fe, 4.2.x, and 4.1.x allows local para-virtualized guest users to cause a denial of service memory consumption via a large 1 bzip2 or 2 lzma compressed kernel image...

RedHat Update for xen RHSA-2012:1236-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

RedHat Update for xen RHSA-2012:1236-01

Check for the Version of xen OpenVAS Vulnerability Test RedHat Update for xen RHSA-2012:1236-01 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...

Scientific Linux Security Update : xen on SL5.x i386/x86_64 (20120905)

The xen packages contain administration tools and the xend service for managing the kernel-xen kernel for virtualization on Red Hat Enterprise Linux. A flaw was found in the way QEMU handled VT100 terminal escape sequences when emulating certain character devices. A guest user with privileges to...

Scientific Linux Security Update : up2date on SL3.x i386/x86_64

previously, up2date did not check if it was running on a KVM-based virtualized instance of Scientific Linux 3.0.9. With this update, up2date now checks for and supports running in fully-virtualized environments. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text is C...

Scientific Linux Security Update : xen on SL5.x i386/x86_64

CVE-2009-3525 Xen: PyGrub missing support for password configuration command The pyGrub boot loader did not honor the 'password' option in the grub.conf file for para-virtualized guests. Users with access to a guest's console could use this flaw to bypass intended access restrictions and boot the...

Scientific Linux Security Update : xen on SL5.x i386/x86_64

Note: Troy Dawson has tested this update on a machine hosting both paravirtualized and fully virtualized machines, both 32 bit and 64 bit. He did the update while all the machines were running, none of them had any problems. He also tried stopping, starting, and rebooting several of the machines...

Scientific Linux Security Update : Virtio on SL3.x i386/x86_64

This new package provides signed, para-virtualized block and network drivers for Scientific Linux 3 as a KVM virtualized guest. Users may see various warnings during package installation, including : - Different versions of package are already installed. Older versions of the package may cause...

Fedora 17 2012-9621

Cobbler is a network install server. Cobbler supports PXE, virtualized installs, and re-installing existing Linux machines. The last two modes use a helper tool, 'koan', that integrates with cobbler. There is also a web interface 'cobbler-web'. Cobbler's advanced features include importing...

kernel: x86-64: avoid sysret to non-canonical address

It was found that the Xen hypervisor implementation as shipped with Red Hat Enterprise Linux 5 did not properly restrict the syscall return addresses in the sysret return path to canonical addresses. An unprivileged user in a 64-bit para-virtualized guest, that is running on a 64-bit host that ha...

CentOS Update for xen CESA-2009:1472 centos5 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CentOS Update for xen CESA-2009:1472 centos5 i386

Check for the Version of xen OpenVAS Vulnerability Test CentOS Update for xen CESA-2009:1472 centos5 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

Anup Ghosh on PDF Exploits and Sandboxes

Dennis Fisher talks with Anup Ghosh, founder and chief scientist of Invincea, about the rise of browser and PDF exploits, the company’s new virtualized PDF security product and whether the Reader X sandbox will make a difference in preventing widespread PDF attacks. Podcast audio courtesy of...

Lenovo Hotkey Driver 5.33 - Local Privilege Escalation

Lenovo Hotkey Driver 5.33 - Local Privilege Escalation Author: Chilik Tamir - Amdocs Power Security Testing Group Website: http://invalid-packet.blogspot.com/2010/03/full-disclosure-security-vulnerability.html Subject: Security vulnerability in Lenovo Hotkey Driver and Access Connections version...

CentOS 5 : xen (CESA-2008:0892)

Updated xen packages that resolve a couple of security issues and fix a bug are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The xen packages contain tools for managing the virtual machine monit...

RedHat Security Advisory RHSA-2009:1472

The remote host is missing updates announced in advisory RHSA-2009:1472. Xen is an open source virtualization framework. Virtualization allows users to run guest operating systems in virtual machines on top of a host operating system. The pyGrub boot loader did not honor the password option in th...

Design/Logic Flaw

The pyGrub boot loader in Xen 3.0.3, 3.3.0, and Xen-3.3.1 does not support the password option in grub.conf for para-virtualized guests, which allows attackers with access to the para-virtualized guest console to boot the guest or modify the guest's kernel boot parameters without providing the...

CVE-2009-3525

The pyGrub boot loader in Xen 3.0.3, 3.3.0, and Xen-3.3.1 does not support the password option in grub.conf for para-virtualized guests, which allows attackers with access to the para-virtualized guest console to boot the guest or modify the guest's kernel boot parameters without providing the...