PT-2013-4913 · Red Hat · Red Hat Enterprise Virtualization

David Gibson

Publicado

2013-08-19

Atualizado

2023-02-13

CVE-2013-4236

CVSS v2.0

2.7

Baixa

Vetor

AV:A/AC:L/Au:S/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Red Hat Enterprise Virtualization versions 3 and 3.2

Description The issue allows privileged guest users to cause the host to become unavailable to the management server by sending a guest agent response containing invalid XML characters. This is due to an incomplete fix for a previous issue.

Recommendations For Red Hat Enterprise Virtualization versions 3 and 3.2, consider restricting guest user privileges to minimize the risk of exploitation until a complete fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2013-4236

RHSA-2013:1155

RHSA-2013:1181

Produtos afetados

Red Hat Enterprise Virtualization

PT-2013-4913 · Red Hat · Red Hat Enterprise Virtualization

CVE-2013-4236

Identificadores relacionados

Produtos afetados

Referências · 4