Denial of Service Vulnerability in Xen and Citrix XenServer

Denial of Service Vulnerability in Xen and Citrix XenServer

CVE-2012-3494 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:N/A:P

The set_debugreg hypercall in include/asm-x86/debugreg.h in Xen 4.0, 4.1, and 4.2, and Citrix XenServer 6.0.2 and earlier, when running on x86-64 systems, allows local OS guest users to cause a denial of service (host crash) by writing to the reserved bits of the DR7 debug control register.

Learn more about our Cis Benchmark Audit For Server Software.