PT-2007-7272 · Xen+1 · Xen+1

Published

2007-12-17

Updated

2017-09-29

CVE-2007-6416

CVSS v2.0

4.6

Medium

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Xen versions 3.1.2 and earlier

Description The issue concerns the copy to user function in the PAL emulation functionality for Xen, specifically when running on ia64 systems. It allows HVM guest users to access arbitrary physical memory by triggering certain mapping operations.

Recommendations For Xen versions 3.1.2 and earlier, consider updating to a newer version to mitigate the risk, as the copy to user function in the PAL emulation functionality poses a security risk when running on ia64 systems.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2007-6416

RHSA-2008:0089

RHSA-2008_0089

Affected Products

Red Hat

Xen

PT-2007-7272 · Xen+1 · Xen+1

CVE-2007-6416

Weakness Enumeration

Related Identifiers

Affected Products

References · 460