QEMU-kvm is vulnerable to privilege escalation. An unquoted search path flaw was found in the way the QEMU Guest Agent service installation was performed on Windows. Depending on the permissions of the directories in the unquoted search path, a local unprivileged user could use this flaw to have a binary of their choosing executed with SYSTEM
privileges.
rhn.redhat.com/errata/RHSA-2013-1100.html
rhn.redhat.com/errata/RHSA-2013-1101.html
access.redhat.com/errata/RHSA-2013:1100
access.redhat.com/errata/RHSA-2013:1101
access.redhat.com/security/cve/CVE-2013-2231
access.redhat.com/security/updates/classification/#important
bugzilla.redhat.com/show_bug.cgi?id=980757
rhn.redhat.com/errata/RHSA-2013-1100.html