QwikSec

Security Database

CVE

CWE

Training

CVE-2011-1898

Published: Aug 12, 2011

Modified: Aug 6, 2024

PUBLISHED

Description

Xen 4.1 before 4.1.1 and 4.0 before 4.0.2, when using PCI passthrough on Intel VT-d chipsets that do not have interrupt remapping, allows guest OS users to gain host OS privileges by "using DMA to generate MSI interrupts by writing to the interrupt injection registers."

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

SUSE-SU-2011:0942

vendor-advisory

x_refsource_SUSE

http://xen.org/download/index_4.0.2.html

x_refsource_CONFIRM

[xen-dev] 20110512 Xen security advisory CVE-2011-1898 - VT-d (PCI passthrough) MSI

mailing-list

x_refsource_MLIST

FEDORA-2011-8403

vendor-advisory

x_refsource_FEDORA

http://www.invisiblethingslab.com/resources/2011/Software%20Attacks%20on%20Intel%20VT-d.pdf

x_refsource_MISC

http://theinvisiblethings.blogspot.com/2011/05/following-white-rabbit-software-attacks.html

x_refsource_MISC

openSUSE-SU-2011:0941

vendor-advisory

x_refsource_SUSE

FEDORA-2011-8421

vendor-advisory

x_refsource_FEDORA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.