Denial of Service and Memory Read Vulnerability in Xen and Citrix XenServer

Denial of Service and Memory Read Vulnerability in Xen and Citrix XenServer

CVE-2012-3498 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:N/A:C

PHYSDEVOP_map_pirq in Xen 4.1 and 4.2 and Citrix XenServer 6.0.2 and earlier allows local HVM guest OS kernels to cause a denial of service (host crash) and possibly read hypervisor or guest memory via vectors related to a missing range check of map->index.

Learn more about our Cis Benchmark Audit For Server Software.