[Forgot Password]
Login  Register Subscribe

30481

 
 

423868

 
 

256040

 
 

909

 
 

199103

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2012-5510Date: (C)2012-12-13   (M)2023-12-22


Xen 4.x, when downgrading the grant table version, does not properly remove the status page from the tracking list when freeing the page, which allows local guest OS administrators to cause a denial of service (hypervisor crash) via unspecified vectors.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 4.7
Exploit Score: 3.4
Impact Score: 6.9
 
CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: NONE
Integrity: NONE
Availability: COMPLETE
  
Reference:
SECUNIA-51397
SECUNIA-51468
SECUNIA-51486
SECUNIA-51487
SECUNIA-55082
BID-56794
OSVDB-88128
DSA-2582
GLSA-201309-24
SUSE-SU-2012:1615
SUSE-SU-2014:0446
http://www.openwall.com/lists/oss-security/2012/12/03/6
http://support.citrix.com/article/CTX135777
openSUSE-SU-2012:1685
openSUSE-SU-2012:1687
openSUSE-SU-2013:0133
openSUSE-SU-2013:0636
openSUSE-SU-2013:0637
xen-grant-table-dos(80478)

CPE    10
cpe:/o:xen:xen:4.1.0
cpe:/o:xen:xen:4.0.1
cpe:/o:xen:xen:4.0.0
cpe:/o:xen:xen:4.0.4
...
OVAL    18
oval:org.secpod.oval:def:104501
oval:org.secpod.oval:def:104392
oval:org.secpod.oval:def:600923
oval:org.secpod.oval:def:400458
...

© SecPod Technologies