ID CVE-2012-5512
Summary Array index error in the HVMOP_set_mem_access handler in Xen 4.1 allows local HVM guest OS administrators to cause a denial of service (crash) or obtain sensitive information via unspecified vectors.
References
Vulnerable Configurations
  • cpe:2.3:a:citrix:xenserver:4.1.0:*:*:*:*:*:*:*
    cpe:2.3:a:citrix:xenserver:4.1.0:*:*:*:*:*:*:*
CVSS
Base: 3.2 (as of 29-08-2017 - 01:32)
Impact:
Exploitability:
CWE CWE-16
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW SINGLE
Impact
ConfidentialityIntegrityAvailability
PARTIAL NONE PARTIAL
cvss-vector via4 AV:L/AC:L/Au:S/C:P/I:N/A:P
refmap via4
bid 56799
confirm http://support.citrix.com/article/CTX135777
gentoo GLSA-201309-24
mlist [oss-security] 20121203 Xen Security Advisory 28 (CVE-2012-5512) - HVMOP_get_mem_access crash / HVMOP_set_mem_access information leak
osvdb 88132
secunia
  • 51397
  • 51486
  • 51487
  • 55082
suse
  • SUSE-SU-2012:1615
  • openSUSE-SU-2012:1685
  • openSUSE-SU-2012:1687
  • openSUSE-SU-2013:0133
xf xen-hvmopsetmemaccess-dos(80481)
Last major update 29-08-2017 - 01:32
Published 13-12-2012 - 11:53
Back to Top