#VU42177 Input validation error in Xen - CVE-2011-1780

Cybersecurity Help s.r.o.

Published: 2014-01-07 | Updated: 2020-08-10

Vulnerability identifier: #VU42177

Vulnerability risk: Medium

CVSSv4.0: 4.9 [CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2011-1780

CWE-ID: CWE-20

Exploitation vector: Local network

Exploit availability: No

Vulnerable software:
Xen
Server applications / Virtualization software

Vendor: Xen Project

Description

The vulnerability allows a remote non-authenticated attacker to perform a denial of service (DoS) attack.

The instruction emulation in Xen 3.0.3 allows local SMP guest users to cause a denial of service (host crash) by replacing the instruction that causes the VM to exit in one thread with a different instruction in a different thread.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Xen: 3.0.3

External links
https://rhn.redhat.com/errata/RHSA-2011-1065.html
https://rhn.redhat.com/errata/RHSA-2011-1163.html
https://www.openwall.com/lists/oss-security/2011/07/07/3
https://bugzilla.redhat.com/show_bug.cgi?id=702657

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Input validation error in Xen