Arbitrary Code Execution

2020-04-1000:28:26

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

JSON

xen is vulnerable to privilege escalation. The vulnerability exists as it was found to allow unprivileged DomU domains to overwrite xenstore values which should only be changeable by the privileged Dom0 domain. An attacker controlling a DomU domain could, potentially, use this flaw to kill arbitrary processes in Dom0 or trick a Dom0 user into accessing the text console of a different domain running on the same host. This update makes certain parts of the xenstore tree read-only to the unprivileged DomU domains.

CPENameOperatorVersion
xeneq3.0.3__25.0.3.el5
xeneq3.0.3__41.el5_1.5
xeneq3.0.3__25.el5
xeneq3.0.3__25.0.4.el5
xeneq3.0.3__41.el5_1.6
xeneq3.0.3__41.el5
xeneq3.0.3__25.0.3.el5
xeneq3.0.3__41.el5_1.5
xeneq3.0.3__25.el5
xeneq3.0.3__25.0.4.el5

Name	Operator	Version
xen	eq	3.0.3__25.0.3.el5
xen	eq	3.0.3__41.el5_1.5
xen	eq	3.0.3__25.el5
xen	eq	3.0.3__25.0.4.el5
xen	eq	3.0.3__41.el5_1.6
xen	eq	3.0.3__41.el5
xen	eq	3.0.3__25.0.3.el5
xen	eq	3.0.3__41.el5_1.5
xen	eq	3.0.3__25.el5
xen	eq	3.0.3__25.0.4.el5