CVE-2014-2915

Sažetak

Xen 4.4.x, when running on ARM systems, does not properly restrict access to hardware features, which allows local guest users to cause a denial of service (host or guest crash) via unspecified vectors, related to (1) cache control, (2) coprocessors, (3) debug registers, and (4) other unspecified registers.

Reference

http://www.openwall.com/lists/oss-security/2014/04/22/10
http://www.openwall.com/lists/oss-security/2014/04/23/2
http://www.securitytracker.com/id/1030135
http://xenbits.xen.org/xsa/advisory-93.html

CVSS

Base:	5.5
Impact:	6.9
Exploitability:	5.1

Pristup

Vektor	Složenost	Autentikacija
ADJACENT_NETWORK	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	COMPLETE

CVSS vektor

AV:A/AC:L/Au:S/C:N/I:N/A:C

Zadnje važnije ažuriranje

30-10-2018 - 16:26

Objavljeno

24-04-2014 - 14:55