Multiple Virtualization Applications Intel VT-d chipsets Local Privilege Escalation Vulnerability

Multiple virtualization applications using Intel VT-d chipsets are prone to a privilege-escalation vulnerability that occurs when 'interrupt remapping' is not enabled in the chipsets.

An attacker can exploit this in the guest operating system to gain elevated privileges and can then compromise the host operating system. This issue can also be exploited to trigger a denial-of-service condition.

The following virtualization applications are affected:

Xen
KVM

NOTE: Reports indicate that all virtualization applications are affected, but this has not been confirmed.


 

Privacy Statement
Copyright 2010, SecurityFocus