PT-2007-7096 · Xen+1 · Xen+1
Published
2007-12-04
·
Updated
2017-09-29
·
CVE-2007-6207
CVSS v2.0
2.1
Low
| Vector | AV:L/AC:L/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Xen versions 3.x, possibly before 3.1.2
Description
The issue is related to the lack of checking of the RID value for mov to rr when Xen is running on IA64 systems. This allows a VTi domain to read the memory of other domains.
Recommendations
For versions 3.x, possibly before 3.1.2, update to version 3.1.2 or later to resolve the issue.
Fix
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Red Hat
Xen