BID:52641

Citrix XenServer vSwitch Controller Component Multiple Unspecified Vulnerabilities

Info

Citrix XenServer vSwitch Controller Component Multiple Unspecified Vulnerabilities

Bugtraq ID:	52641
Class:	Unknown
CVE:
Remote:	Yes
Local:	Yes
Published:	Mar 21 2012 12:00AM
Updated:	Mar 21 2012 12:00AM
Credit:	Maxin Tsoy, Kirill Mosolov and Ilya Smith of Positive Research Center
Vulnerable:	Citrix XenServer 6.0 Citrix XenServer 5.6 SP2 Citrix XenServer 5.6 Feature Pack 1 Citrix XenServer 5.6 Citrix XenServer 5.5

Not Vulnerable:

Discussion

Citrix XenServer vSwitch Controller Component Multiple Unspecified Vulnerabilities

Citrix XenServer is prone to multiple unspecified vulnerabilities.

The impact of these issues is currently unknown. We will update this BID when more information emerges.

Citrix XenServer versions 5.6, 5.6 FP 1, 5.6 SP 2, and 6 are vulnerable.

Exploit / POC

Citrix XenServer vSwitch Controller Component Multiple Unspecified Vulnerabilities

Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Solution / Fix

Citrix XenServer vSwitch Controller Component Multiple Unspecified Vulnerabilities

Solution:
Updates are available. Please see the references for more information.

References

Citrix XenServer vSwitch Controller Component Multiple Unspecified Vulnerabilities

References:

Citrix XenServer Homepage (Citrix)
Multiple Vulnerabilities in Citrix XenServer vSwitch Controller (Citirix)