Published: 01/10/2013 Updated: 07/01/2017

CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

VMScore: 187

Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N

The fbld instruction emulation in Xen 3.3.x up to and including 4.3.x does not use the correct variable for the source effective address, which allows local HVM guests to obtain hypervisor stack information by reading the values used by the instruction.

Vulnerable Product	Search on Vulmon	Subscribe to Product
xen xen 3.3.1
xen xen 3.3.2
xen xen 4.0.2
xen xen 4.0.3
xen xen 4.1.5
xen xen 4.2.0
xen xen 3.4.2
xen xen 3.4.3
xen xen 4.1.1
xen xen 4.1.2
xen xen 3.4.0
xen xen 3.4.1
xen xen 4.0.4
xen xen 4.1.0
xen xen 4.2.1
xen xen 4.2.2
xen xen 4.3.0
xen xen 3.3.0
xen xen 3.4.4
xen xen 4.0.0
xen xen 4.0.1
xen xen 4.1.3
xen xen 4.1.4

Multiple security issues have been discovered in the Xen virtualisation solution which may result in information leaks or denial of service For the stable distribution (wheezy), these problems have been fixed in version 414-3+deb7u2 For the unstable distribution (sid), these problems will be fixed soon We recommend that you upgrade your xen pa ...

The fbld instruction emulation in Xen 33x through 43x does not use the correct variable for the source effective address, which allows local HVM guests to obtain hypervisor stack information by reading the values used by the instruction ...

CWE-200 http://www.openwall.com/lists/oss-security/2013/09/30/3 http://lists.opensuse.org/opensuse-updates/2013-11/msg00009.html http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00021.html http://www.debian.org/security/2014/dsa-3006 http://security.gentoo.org/glsa/glsa-201407-03.xml https://nvd.nist.gov https://www.debian.org/security/./dsa-3006 https://access.redhat.com/security/cve/cve-2013-4361

CVE-2013-4361

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect