Xen XenStore Domain Configuration Data Unsafe Storage Vulnerability

Bugtraq ID: 31499
Class: Design Error
CVE: CVE-2008-4405
CVE-2008-5716
Remote: No
Local: Yes
Published: Sep 30 2008 12:00AM
Updated: Sep 15 2009 05:51PM
Credit: Pascal Bouchareine
Vulnerable: XenSource Xen 3.3
S.u.S.E. openSUSE 11.0
Redhat Enterprise Linux Virtualization 5 Server
Redhat Enterprise Linux Desktop Multi OS 5 client
Redhat Enterprise Linux Desktop 5 client
Redhat Enterprise Linux 5 Server
MandrakeSoft Corporate Server 4.0 x86_64
MandrakeSoft Corporate Server 4.0
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus