Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.9
CVSSv2

CVE-2015-3247

Published: 08/09/2015 Updated: 12/02/2023
CVSS v2 Base Score: 6.9 | Impact Score: 10 | Exploitability Score: 3.4
VMScore: 614
Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C
Subscribe to Spice Project

Vulnerability Summary

Race condition in the worker_update_monitors_config function in SPICE 0.12.4 allows a remote authenticated guest user to cause a denial of service (heap-based memory corruption and QEMU-KVM crash) or possibly execute arbitrary code on the host via unspecified vectors.

Vulnerable Product Search on Vulmon Subscribe to Product

spice project spice 0.12.4

redhat enterprise linux desktop 7.0

redhat enterprise linux workstation 7.0

redhat enterprise linux 7.0

redhat enterprise linux 6.0

redhat enterprise linux server 7.0

redhat enterprise linux hpc node 7.0

redhat enterprise linux desktop 6.0

redhat enterprise linux server 6.0

redhat enterprise linux workstation 6.0

redhat enterprise linux hpc node 6

Vendor Advisories

Debian CVElist Bug Report Logs: spice: CVE-2015-3247: memory corruption in worker_update_monitors_config()
Debian Bug report logs - #797976 spice: CVE-2015-3247: memory corruption in worker_update_monitors_config() Package: src:spice; Maintainer for src:spice is Liang Guo <guoliang@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Fri, 4 Sep 2015 06:24:02 UTC Severity: grave Tags: patch, security, ...
Ubuntu Security Notice: spice vulnerability
Spice could be made to crash or run programs ...
Debian Security Advisories: DSA-3354-1 spice -- security update
Frediano Ziglio of Red Hat discovered a race condition flaw in spice's worker_update_monitors_config() function, leading to a heap-based memory corruption A malicious user in a guest can take advantage of this flaw to cause a denial of service (QEMU process crash) or, potentially execute arbitrary code on the host with the privileges of the hostin ...

References

CWE-119CWE-362http://rhn.redhat.com/errata/RHSA-2015-1714.htmlhttp://rhn.redhat.com/errata/RHSA-2015-1715.htmlhttp://www.securitytracker.com/id/1033459http://rhn.redhat.com/errata/RHSA-2015-1713.htmlhttp://lists.freedesktop.org/archives/spice-devel/2015-October/022191.htmlhttp://www.ubuntu.com/usn/USN-2736-1http://www.securitytracker.com/id/1033460http://www.debian.org/security/2015/dsa-3354http://lists.opensuse.org/opensuse-updates/2015-09/msg00018.htmlhttp://www.securitytracker.com/id/1033753https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=797976https://usn.ubuntu.com/2736-1/https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-3675CVE-2024-3400CVE-2024-23557mass assignmentCVE-2023-1389local file inclusionCVE-2024-32596file uploadCVE-2024-32593
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook