Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1898

Overview

Vulnerability Score 7.4 7.4
CVE Id CVE-2011-1898
Last Modified 25 Oct 2011 10:58:58
Published 12 Aug 2011 02:55:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector ADJACENT_NETWORK
Access Complexity MEDIUM
Authentication SINGLE_INSTANCE

CVE-2011-1898

Summary

Xen 4.1 before 4.1.1 and 4.0 before 4.0.2, when using PCI passthrough on Intel VT-d chipsets that do not have interrupt remapping, allows guest OS users to gain host OS privileges by "using DMA to generate MSI interrupts by writing to the interrupt injection registers."

Vulnerable Systems

Application

  • Citrix Xen 4.0.0

  • Citrix Xen 4.0.1

  • Citrix Xen 4.1.0


References

CONFIRM - http://xen.org/download/index_4.0.2.html

MLIST - [xen-dev] 20110512 Xen security advisory CVE-2011-1898 - VT-d (PCI passthrough) MSI

MISC - http://www.invisiblethingslab.com/resources/2011/Software%20Attacks%20on%20Intel%20VT-d.pdf

MISC - http://theinvisiblethings.blogspot.com/2011/05/following-white-rabbit-software-attacks.html

SUSE - SUSE-SU-2011:0942

SUSE - openSUSE-SU-2011:0941

FEDORA - FEDORA-2011-8403

FEDORA - FEDORA-2011-8421

Related Patches

Red Hat 2011:1479-01 RHSA Important: kernel security, bug fix, and enhancement update for RHEL 5 x86

Red Hat 2011:1479-01 RHSA Important: kernel security, bug fix, and enhancement update for RHEL 5 x86_64

Novell SUSE 2011:4977 xen-201107 security update for SLE 11 SP1 i586


Last Updated: 27 May 2016 10:56:50