Denial of service in Oracle VM Server for x86 - CVE-2016-7154
Published: September 9, 2016 / Updated: January 9, 2017
Vulnerability identifier: #VU393
CSH Severity: High
CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:H/SI:L/SA:H/E:A/U:Amber
CVE-ID: CVE-2016-7154
CWE-ID: CWE-284
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vendor: Oracle
Affected software:
Oracle VM Server for x86
Oracle VM Server for x86
Detailed vulnerability description
The vulnerability allows local administrative user to gain elevated privileges and cause denial of service on the host system.
The vulnerability exists due to supplying of specially crafted frame number to the EVTCHNOP_init_control() function and allows attacker to cause use-after-free and denil of service.
The vulnerability exists due to supplying of specially crafted frame number to the EVTCHNOP_init_control() function and allows attacker to cause use-after-free and denil of service.
Successful exploitation of this vulnerability may allow a lcal user to get privileges on the host system and trigger a target service deny.
How to mitigate CVE-2016-7154
Install patched version from vendor's website: xsa188.patch