Memory Address Vulnerability in XENMEM_exchange Handler

Memory Address Vulnerability in XENMEM_exchange Handler

CVE-2012-5513 · MEDIUM Severity

AV:L/AC:M/AU:N/C:C/I:C/A:C

The XENMEM_exchange handler in Xen 4.2 and earlier does not properly check the memory address, which allows local PV guest OS administrators to cause a denial of service (crash) or possibly gain privileges via unspecified vectors that overwrite memory in the hypervisor reserved range.

Learn more about our Cis Benchmark Audit For Microsoft Exchange Server.