|
|
Xen pygrub TOOLS/PYGRUB/SRC/GRUBCONF.PY Local Command Injection Vulnerability
|
Bugtraq ID:
|
25825
|
|
Class:
|
Input Validation Error
|
|
CVE:
|
CVE-2007-4993
|
|
Remote:
|
No
|
|
Local:
|
Yes
|
|
Published:
|
Sep 22 2007 12:00AM
|
|
Updated:
|
Nov 15 2007 12:37AM
|
|
Credit:
|
Joris van Rantwijk discovered this issue.
|
|
Vulnerable:
|
XenSource Xen 3.0.3
Ubuntu Ubuntu Linux 7.04 sparc
Ubuntu Ubuntu Linux 7.04 powerpc
Ubuntu Ubuntu Linux 7.04 i386
Ubuntu Ubuntu Linux 7.04 amd64
rPath rPath Linux 1
RedHat Fedora Core7 0
RedHat Enterprise Linux Virtualization 5 server
RedHat Enterprise Linux Desktop Multi OS 5 client
RedHat Enterprise Linux Desktop 5 client
RedHat Enterprise Linux 5 server
MandrakeSoft Linux Mandrake 2007.1 x86_64
MandrakeSoft Linux Mandrake 2007.1
MandrakeSoft Linux Mandrake 2007.0 x86_64
MandrakeSoft Linux Mandrake 2007.0
MandrakeSoft Corporate Server 4.0 x86_64
MandrakeSoft Corporate Server 4.0
Debian Linux 4.0 sparc
Debian Linux 4.0 s/390
Debian Linux 4.0 powerpc
Debian Linux 4.0 mipsel
Debian Linux 4.0 mips
Debian Linux 4.0 m68k
Debian Linux 4.0 ia-64
Debian Linux 4.0 ia-32
Debian Linux 4.0 hppa
Debian Linux 4.0 arm
Debian Linux 4.0 amd64
Debian Linux 4.0 alpha
Debian Linux 4.0
|
|
|
|
Not Vulnerable:
|
|
|
|
