ID CVE-2016-2271
Summary VMX in Xen 4.6.x and earlier, when using an Intel or Cyrix CPU, allows local HVM guest users to cause a denial of service (guest crash) via vectors related to a non-canonical RIP. <a href="http://cwe.mitre.org/data/definitions/476.html">CWE-476: NULL Pointer Dereference</a>
References
Vulnerable Configurations
  • cpe:2.3:o:xen:xen:4.6.0:*:*:*:*:*:*:*
    cpe:2.3:o:xen:xen:4.6.0:*:*:*:*:*:*:*
  • cpe:2.3:o:xen:xen:4.6.1:*:*:*:*:*:*:*
    cpe:2.3:o:xen:xen:4.6.1:*:*:*:*:*:*:*
CVSS
Base: 2.1 (as of 01-07-2017 - 01:29)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:L/AC:L/Au:N/C:N/I:N/A:P
refmap via4
confirm
debian DSA-3519
fedora
  • FEDORA-2016-e48f4bd14f
  • FEDORA-2016-f8121efdac
gentoo GLSA-201604-03
sectrack 1035043
Last major update 01-07-2017 - 01:29
Published 19-02-2016 - 16:59
Back to Top