ID CVE-2014-0189
Summary virt-who uses world-readable permissions for /etc/sysconfig/virt-who, which allows local users to obtain password for hypervisors by reading the file.
References
Vulnerable Configurations
  • RedHat Enterprise Linux Desktop 7.0
    cpe:2.3:o:redhat:enterprise_linux_desktop:7.0
  • RedHat Enterprise Linux Server 7.0
    cpe:2.3:o:redhat:enterprise_linux_server:7.0
  • RedHat Enterprise Linux Workstation 7.0
    cpe:2.3:o:redhat:enterprise_linux_workstation:7.0
  • virt-who project virt-who
    cpe:2.3:a:virt-who_project:virt-who
CVSS
Base: 2.1 (as of 25-08-2016 - 13:15)
Impact:
Exploitability:
CWE CWE-310
CAPEC
  • Signature Spoofing by Key Recreation
    An attacker obtains an authoritative or reputable signer's private signature key by exploiting a cryptographic weakness in the signature algorithm or pseudorandom number generation and then uses this key to forge signatures from the original signer to mislead a victim into performing actions that benefit the attacker.
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL NONE NONE
redhat via4
advisories
bugzilla
id 1168122
title virt-who incorrectly says that VM is from 'None' hypervisor
oval
AND
  • comment virt-who is earlier than 0:0.11-5.el7
    oval oval:com.redhat.rhsa:tst:20150430005
  • comment virt-who is signed with Red Hat redhatrelease2 key
    oval oval:com.redhat.rhsa:tst:20150430006
  • OR
    • comment Red Hat Enterprise Linux 7 Client is installed
      oval oval:com.redhat.rhsa:tst:20140675001
    • comment Red Hat Enterprise Linux 7 Server is installed
      oval oval:com.redhat.rhsa:tst:20140675002
    • comment Red Hat Enterprise Linux 7 Workstation is installed
      oval oval:com.redhat.rhsa:tst:20140675003
    • comment Red Hat Enterprise Linux 7 ComputeNode is installed
      oval oval:com.redhat.rhsa:tst:20140675004
rhsa
id RHSA-2015:0430
released 2015-03-05
severity Moderate
title RHSA-2015:0430: virt-who security, bug fix, and enhancement update (Moderate)
rpms virt-who-0:0.11-5.el7
refmap via4
bid 67089
confirm
mlist [oss-security] 20140428 CVE-2014-0189: /etc/sysconfig/virt-who is world-readable (contains unencrypted passwords)
Last major update 26-08-2016 - 08:02
Published 02-05-2014 - 10:55
Back to Top