QEMU KVM Virtio Component VSC_ATR Message Local Privilege Escalation Vulnerability
BID:50933
Info
QEMU KVM Virtio Component VSC_ATR Message Local Privilege Escalation Vulnerability
| Bugtraq ID: | 50933 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2011-4111 |
| Remote: | No |
| Local: | Yes |
| Published: | Dec 06 2011 12:00AM |
| Updated: | Dec 19 2011 05:59PM |
| Credit: | Petr Matousek |
| Vulnerable: |
Red Hat Enterprise Linux Workstation 6 Red Hat Enterprise Linux Server EUS 6.1.z Red Hat Enterprise Linux Server 6 Red Hat Enterprise Linux HPC Node 6 Red Hat Enterprise Linux Desktop 6 QEMU QEMU 0 Oracle Enterprise Linux 6.2 Oracle Enterprise Linux 6 |
| Not Vulnerable: | |
Discussion
QEMU KVM Virtio Component VSC_ATR Message Local Privilege Escalation Vulnerability
QEMU KVM is prone to a local privilege-escalation vulnerability.
An attacker can exploit this issue to execute arbitrary code on the host operating system or crash the qemu-bvm process.
QEMU KVM is prone to a local privilege-escalation vulnerability.
An attacker can exploit this issue to execute arbitrary code on the host operating system or crash the qemu-bvm process.
Exploit / POC
QEMU KVM Virtio Component VSC_ATR Message Local Privilege Escalation Vulnerability
Currently, we are not aware of any exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently, we are not aware of any exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
QEMU KVM Virtio Component VSC_ATR Message Local Privilege Escalation Vulnerability
Solution:
Updates are available. Please see the references for more information.
Solution:
Updates are available. Please see the references for more information.
References
QEMU KVM Virtio Component VSC_ATR Message Local Privilege Escalation Vulnerability
References:
References:
- Vendor Homepage (QEMU)