PT-2007-5140 · Xen+1 · Xen+1

Steve Kemp

Published

2007-10-28

Updated

2024-06-15

CVE-2007-3919

CVSS v2.0

6.0

Medium

Vector

AV:L/AC:M/Au:S/C:N/I:C/A:C

Name of the Vulnerable Software and Affected Versions: Xen versions 3.1 and earlier

Description: The issue allows local users to truncate arbitrary files via a symlink attack on /tmp/xenq-shm, which is related to xenbaked and xenmon.py.

Recommendations: For Xen versions 3.1 and earlier, consider restricting access to the /tmp/xenq-shm file to prevent symlink attacks until a patch is available. As a temporary workaround, consider disabling the xenmon.py script until a patch is available. Avoid using xenbaked and xenmon.py in Xen versions 3.1 and earlier until the issue is resolved.

Fix

Link Following

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-59

Related Identifiers

CVE-2007-3919

DSA-1395-1

OPENSUSE-SU-2024:11520-1

RHSA-2008:0194

RHSA-2008_0194

Affected Products

Red Hat

Xen

PT-2007-5140 · Xen+1 · Xen+1

CVE-2007-3919

Weakness Enumeration

Related Identifiers

Affected Products

References · 121