fkie_cve-2010-3851
Vulnerability from fkie_nvd
Published
2010-11-04 18:00
Modified
2025-04-11 00:51
Severity ?
Summary
libguestfs before 1.5.23, as used in virt-v2v, virt-inspector 1.5.3 and earlier, and possibly other products, when a raw-format disk image is used, allows local guest OS administrators to read files from the host via a crafted (1) qcow2, (2) VMDK, or (3) VDI header, related to lack of support for a disk format specifier.
References
secalert@redhat.comhttp://lists.fedoraproject.org/pipermail/package-announce/2010-November/050237.htmlPatch
secalert@redhat.comhttp://lists.fedoraproject.org/pipermail/package-announce/2010-November/050742.html
secalert@redhat.comhttp://rwmj.wordpress.com/2010/10/23/new-libguestfs-stable-versions/
secalert@redhat.comhttp://secunia.com/advisories/41797Vendor Advisory
secalert@redhat.comhttp://secunia.com/advisories/42235
secalert@redhat.comhttp://www.redhat.com/support/errata/RHSA-2011-0586.html
secalert@redhat.comhttp://www.securityfocus.com/bid/44166
secalert@redhat.comhttp://www.vupen.com/english/advisories/2010/2874Vendor Advisory
secalert@redhat.comhttp://www.vupen.com/english/advisories/2010/2963
secalert@redhat.comhttps://bugzilla.redhat.com/show_bug.cgi?id=643958
secalert@redhat.comhttps://www.redhat.com/archives/libguestfs/2010-October/msg00036.html
secalert@redhat.comhttps://www.redhat.com/archives/libguestfs/2010-October/msg00037.html
secalert@redhat.comhttps://www.redhat.com/archives/libguestfs/2010-October/msg00041.htmlPatch
af854a3a-2127-422b-91ae-364da2661108http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050237.htmlPatch
af854a3a-2127-422b-91ae-364da2661108http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050742.html
af854a3a-2127-422b-91ae-364da2661108http://rwmj.wordpress.com/2010/10/23/new-libguestfs-stable-versions/
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/41797Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/42235
af854a3a-2127-422b-91ae-364da2661108http://www.redhat.com/support/errata/RHSA-2011-0586.html
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/44166
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2010/2874Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2010/2963
af854a3a-2127-422b-91ae-364da2661108https://bugzilla.redhat.com/show_bug.cgi?id=643958
af854a3a-2127-422b-91ae-364da2661108https://www.redhat.com/archives/libguestfs/2010-October/msg00036.html
af854a3a-2127-422b-91ae-364da2661108https://www.redhat.com/archives/libguestfs/2010-October/msg00037.html
af854a3a-2127-422b-91ae-364da2661108https://www.redhat.com/archives/libguestfs/2010-October/msg00041.htmlPatch
Impacted products
Vendor Product Version
libguestfs libguestfs *
libguestfs libguestfs 1.5.0
libguestfs libguestfs 1.5.1
libguestfs libguestfs 1.5.2
libguestfs libguestfs 1.5.3
libguestfs libguestfs 1.5.4
libguestfs libguestfs 1.5.5
libguestfs libguestfs 1.5.6
libguestfs libguestfs 1.5.7
libguestfs libguestfs 1.5.8
libguestfs libguestfs 1.5.9
libguestfs libguestfs 1.5.10
libguestfs libguestfs 1.5.11
libguestfs libguestfs 1.5.12
libguestfs libguestfs 1.5.13
libguestfs libguestfs 1.5.14
libguestfs libguestfs 1.5.15
libguestfs libguestfs 1.5.16
libguestfs libguestfs 1.5.17
libguestfs libguestfs 1.5.18
libguestfs libguestfs 1.5.19
libguestfs libguestfs 1.5.20
libguestfs libguestfs 1.5.21
matthew_booth virt-v2v *
richard_jones virt-inspector *


To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:libguestfs:libguestfs:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "A4E2996B-8A3E-4AA0-A608-E139BBA5504E",
              "versionEndIncluding": "1.5.22",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:libguestfs:libguestfs:1.5.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "7DA99331-E185-467D-BDBC-5E18EBF56C67",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:libguestfs:libguestfs:1.5.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "17AA91C9-BD8B-477C-9DE2-37F44CBA6450",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:libguestfs:libguestfs:1.5.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "82E79577-A638-46DF-A47D-249E85E74C3D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:libguestfs:libguestfs:1.5.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "52231A57-0344-482A-BED8-5F4A9EBFA713",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:libguestfs:libguestfs:1.5.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "E48B2379-3CEA-4A58-AEA4-2328868F5339",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:libguestfs:libguestfs:1.5.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "51E57163-94B3-4709-88A8-7139C531804F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:libguestfs:libguestfs:1.5.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "54368743-2B14-4B24-AC41-D4252D892468",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:libguestfs:libguestfs:1.5.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "772290ED-6A09-477A-AFBA-14F901930015",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:libguestfs:libguestfs:1.5.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "526A7F38-E24F-4550-912A-142B858848F8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:libguestfs:libguestfs:1.5.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "55756BFD-70AC-4CB5-847C-13AE2F934332",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:libguestfs:libguestfs:1.5.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "6ED35292-D610-4061-8E64-6EDCD6D92810",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:libguestfs:libguestfs:1.5.11:*:*:*:*:*:*:*",
              "matchCriteriaId": "29CE04FB-3F72-427F-A912-55C9DFA34558",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:libguestfs:libguestfs:1.5.12:*:*:*:*:*:*:*",
              "matchCriteriaId": "EC0D7435-8AEA-4D14-AA28-1E93B2CCAFA6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:libguestfs:libguestfs:1.5.13:*:*:*:*:*:*:*",
              "matchCriteriaId": "34EF36A0-E668-4565-92C5-1F7C48682CDD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:libguestfs:libguestfs:1.5.14:*:*:*:*:*:*:*",
              "matchCriteriaId": "304BA946-0566-4E29-A6F6-A7BA0E17EE28",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:libguestfs:libguestfs:1.5.15:*:*:*:*:*:*:*",
              "matchCriteriaId": "07866880-6171-4ADB-8438-21E7E77C5E60",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:libguestfs:libguestfs:1.5.16:*:*:*:*:*:*:*",
              "matchCriteriaId": "99D74570-DF29-4F69-B94E-C51DE53E8C59",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:libguestfs:libguestfs:1.5.17:*:*:*:*:*:*:*",
              "matchCriteriaId": "318EA742-A43B-4EA1-A3C8-3322498C1E5B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:libguestfs:libguestfs:1.5.18:*:*:*:*:*:*:*",
              "matchCriteriaId": "4D5D6136-D050-49C6-9C06-922C6A692A4F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:libguestfs:libguestfs:1.5.19:*:*:*:*:*:*:*",
              "matchCriteriaId": "A541A9C5-EDBA-48D2-9B7E-351D0DEA06EE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:libguestfs:libguestfs:1.5.20:*:*:*:*:*:*:*",
              "matchCriteriaId": "9FB4834F-02D2-4AA3-A4A8-DC0C6E7DEFBA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:libguestfs:libguestfs:1.5.21:*:*:*:*:*:*:*",
              "matchCriteriaId": "472FFF3B-FDC8-499D-98C0-5857BF8B404F",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:matthew_booth:virt-v2v:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "E0CDFDB5-535A-4ED4-BD04-A9D4A6D30584",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:a:richard_jones:virt-inspector:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "18AD5175-788D-407A-89D4-E98D82EFA293",
              "versionEndIncluding": "1.5.3",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "libguestfs before 1.5.23, as used in virt-v2v, virt-inspector 1.5.3 and earlier, and possibly other products, when a raw-format disk image is used, allows local guest OS administrators to read files from the host via a crafted (1) qcow2, (2) VMDK, or (3) VDI header, related to lack of support for a disk format specifier."
    },
    {
      "lang": "es",
      "value": "libguestfs anterior a v1.5.23, que se utiliza en virt-V2V, virt-inspector v1.5.3 y anteriores, y posiblemente otros productos, cuando una imagen de disco sin formato se utiliza, permite a administradores locales del sistema operativo leer archivos desde el host mediante un (1) qcow2, (2) VMDK, o (3) VDI header manipulado, relacionados con la falta de apoyo de un especificador de formato de disco."
    }
  ],
  "id": "CVE-2010-3851",
  "lastModified": "2025-04-11T00:51:21.963",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "LOCAL",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 4.7,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "NONE",
          "vectorString": "AV:L/AC:M/Au:N/C:C/I:N/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 3.4,
        "impactScore": 6.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2010-11-04T18:00:02.767",
  "references": [
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Patch"
      ],
      "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050237.html"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050742.html"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://rwmj.wordpress.com/2010/10/23/new-libguestfs-stable-versions/"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/41797"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/42235"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.redhat.com/support/errata/RHSA-2011-0586.html"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.securityfocus.com/bid/44166"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.vupen.com/english/advisories/2010/2874"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.vupen.com/english/advisories/2010/2963"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=643958"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://www.redhat.com/archives/libguestfs/2010-October/msg00036.html"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://www.redhat.com/archives/libguestfs/2010-October/msg00037.html"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Patch"
      ],
      "url": "https://www.redhat.com/archives/libguestfs/2010-October/msg00041.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050237.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050742.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://rwmj.wordpress.com/2010/10/23/new-libguestfs-stable-versions/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/41797"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/42235"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.redhat.com/support/errata/RHSA-2011-0586.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/44166"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.vupen.com/english/advisories/2010/2874"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2010/2963"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=643958"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://www.redhat.com/archives/libguestfs/2010-October/msg00036.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://www.redhat.com/archives/libguestfs/2010-October/msg00037.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "https://www.redhat.com/archives/libguestfs/2010-October/msg00041.html"
    }
  ],
  "sourceIdentifier": "secalert@redhat.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-200"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.