SB2016081011 - Information disclosure in QEMU

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2016081011

SB2016081011 - Information disclosure in QEMU

Published: August 10, 2016

Security Bulletin ID SB2016081011
Severity
Low
Patch available
YES
Number of vulnerabilities 2
Exploitation vector Adjecent network
Highest impact Information disclosure

Breakdown by Severity

Low 100%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 2 secuirty vulnerabilities.


1) IP header length checking flaw (CVE-ID: N/A)

The vulnerability allows a local user to obtain potentially sensitive information.

The vulnerability exists due improper check of IP header length values. A local user can obtain potentially sensitive information on the target system.
Systems with VMWARE VMXNET3 NIC device support are affected.

Successful exploitation of this vulnerability may result in disclosure of system information.

2) Vmxnet3 device emulator bug in processing transmit queue (CVE-ID: N/A)

The vulnerability allows an adjacent user to obtain potentially sensitive information on the host system.
The vulnerability exists in QEMU. An adjacent attacker can obtain information on the host system by causing an information leak in the transmit queue processing.
 Systems wtih VMWARE VMXNET3 NIC device support are affected.

Successful exploitation of this vulnerability may result in disclosure of system information.

Remediation

Install update from vendor's website.

References