CVE Vulnerabilities

CVE-2007-0998

Published: Mar 20, 2007 | Modified: Oct 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.3 MEDIUM
AV:N/AC:M/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu
UNTRIAGED

The VNC server implementation in QEMU, as used by Xen and possibly other environments, allows local users of a guest operating system to read arbitrary files on the host operating system via unspecified vectors related to QEMU monitor mode, as demonstrated by mapping files to a CDROM device. NOTE: some of these details are obtained from third party information.

Affected Software

Name Vendor Start Version End Version
Enterprise_linux Redhat 5.0 (including) 5.0 (including)
Fedora_core Redhat core_5.0 (including) core_5.0 (including)
Fedora_core Redhat core6 (including) core6 (including)
Red Hat Enterprise Linux 5 RedHat xen-0:3.0.3-25.0.3.el5 *
Xen-3.0 Ubuntu edgy *
Xen-3.0 Ubuntu feisty *
Xen-3.1 Ubuntu devel *
Xen-3.1 Ubuntu gutsy *

References