 |
Startseite ▼ Bookkeeping
Online ▼ Sicherheits
Überprüfungs ▼
Verwaltetes
DNS ▼
Info
Bestellen/Erneuern
FAQ
AUP
Dynamic DNS Clients
Domaine konfigurieren Dyanmic DNS Update Password Netzwerk
Überwachung ▼
Enterprise
Erweiterte
Standard
Gratis Test
FAQ
Preis/Funktionszusammenfassung
Bestellen
Beispiele
Konfigurieren/Status Alarm Profile | ||
| Test Kennung: | 1.3.6.1.4.1.25623.1.0.1140113 |
| Kategorie: | Citrix Xenserver Local Security Checks |
| Titel: | Citrix XenServer Multiple Security Updates (CTX219378) |
| Zusammenfassung: | Security vulnerabilities have been identified in Citrix XenServer that may allow malicious; code running within a guest VM to read a small part of hypervisor memory and allow privileged-mode code running within a guest; VM to hang or crash the host. |
| Beschreibung: | Summary: Security vulnerabilities have been identified in Citrix XenServer that may allow malicious code running within a guest VM to read a small part of hypervisor memory and allow privileged-mode code running within a guest VM to hang or crash the host. Vulnerability Insight: The following vulnerabilities have been addressed: - CVE-2016-9932 (Low): x86 CMPXCHG8B emulation fails to ignore operand size override - CVE-2016-10024 (Medium): x86 PV guests may be able to mask interrupts - CVE-2016-10025 (Low): missing NULL pointer check in VMFUNC emulation Affected Software/OS: These vulnerabilities affect all currently supported versions of Citrix XenServer up to and including Citrix XenServer 7.0. Solution: Apply the hotfix referenced in the advisory. CVSS Score: 4.9 CVSS Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C |
| Querverweis: |
Common Vulnerability Exposure (CVE) ID: CVE-2016-9932 BugTraq ID: 94863 http://www.securityfocus.com/bid/94863 Debian Security Information: DSA-3847 (Google Search) http://www.debian.org/security/2017/dsa-3847 https://security.gentoo.org/glsa/201612-56 http://www.securitytracker.com/id/1037468 Common Vulnerability Exposure (CVE) ID: CVE-2016-10024 BugTraq ID: 95021 http://www.securityfocus.com/bid/95021 http://www.securitytracker.com/id/1037517 Common Vulnerability Exposure (CVE) ID: CVE-2016-10025 BugTraq ID: 95026 http://www.securityfocus.com/bid/95026 http://www.securitytracker.com/id/1037518 |
| Copyright | Copyright (C) 2017 Greenbone AG |
| Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten. |