Back to search
CVE-2008-5716
Published: Dec 24, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
xend in Xen 3.3.0 does not properly restrict a guest VM's write access within the /local/domain xenstore directory tree, which allows guest OS users to cause a denial of service and possibly have unspecified other impact by writing to (1) console/tty, (2) console/limit, or (3) image/device-model-pid. NOTE: this issue exists because of erroneous set_permissions calls in the fix for CVE-2008-4405.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
xen-xend-xenstore-dos(47668)
vdb-entry
x_refsource_XF
[xen-devel] 20081218 Re: PATCH: Actually make /local/domain/$DOMID readonly to the guest
mailing-list
x_refsource_MLIST
[xen-devel] 20081218 Re: PATCH: Actually make /local/domain/$DOMID readonly to the guest
mailing-list
x_refsource_MLIST
[xen-devel] 20081218 Re: PATCH: Actually make /local/domain/$DOMID readonly to the guest
mailing-list
x_refsource_MLIST
31499
vdb-entry
x_refsource_BID
[oss-security] 20081219 CVE Request -- Xen (Upstream patch for CVE-2008-4405 is incomplete)
mailing-list
x_refsource_MLIST
[xen-devel] 20081218 PATCH: Actually make /local/domain/$DOMID readonly to the guest
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now