Main Vulnerability Database Exploits ID:3626 - Exploit for Race condition in libvirt - CVE-2014-1447

ID:3626 - Exploit for Race condition in libvirt - CVE-2014-1447

Published: July 29, 2020

Vulnerability identifier: #VU32584

Vulnerability risk: Low

CVE-ID: CVE-2014-1447

CWE-ID: CWE-362

Exploitation vector: Adjecent network

Vulnerable software:
libvirt

Link to public exploit:

https://github.com/tagatac/libvirt-CVE-2014-1447

Vulnerability description

The vulnerability allows a remote non-authenticated attacker to perform service disruption.

Race condition in the virNetServerClientStartKeepAlive function in libvirt before 1.2.1 allows remote attackers to cause a denial of service (libvirtd crash) by closing a connection before a keepalive response is sent.

Remediation

Install update from vendor's website.

ID:3626 - Exploit for Race condition in libvirt - CVE-2014-1447

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human