5 matches found
CVE-2009-3525
The pyGrub boot loader in Xen 3.0.3, 3.3.0, and Xen-3.3.1 does not support the password option in grub.conf for para-virtualized guests, which allows attackers with access to the para-virtualized guest console to boot the guest or modify the guest's kernel boot parameters without providing the...
CVE-2008-5716
xend in Xen 3.3.0 does not properly restrict a guest VM's write access within the /local/domain xenstore directory tree, which allows guest OS users to cause a denial of service and possibly have unspecified other impact by writing to 1 console/tty, 2 console/limit, or 3 image/device-model-pid...
CVE-2008-5716
xend in Xen 3.3.0 does not properly restrict a guest VM's write access within the /local/domain xenstore directory tree, which allows guest OS users to cause a denial of service and possibly have unspecified other impact by writing to 1 console/tty, 2 console/limit, or 3 image/device-model-pid...
Design/Logic Flaw
xend in Xen 3.3.0 does not properly restrict a guest VM's write access within the /local/domain xenstore directory tree, which allows guest OS users to cause a denial of service and possibly have unspecified other impact by writing to 1 console/tty, 2 console/limit, or 3 image/device-model-pid...
CVE-2008-5716
Technical details for CVE-2008-5716 are not publicly available in the provided documents. The connected Nessus/OpenVAS entries reference CVE-2008-4405 and CVE-2008-4993 related to xenstore permissions, but do not provide specifics for CVE-2008-5716.