CVE Vulnerabilities

CVE-2013-2231

Published: Oct 01, 2013 | Modified: Feb 13, 2023
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.2 HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
7.2 IMPORTANT
AV:L/AC:L/Au:N/C:C/I:C/A:C
RedHat/V3
Ubuntu

Unquoted Windows search path vulnerability in the QEMU Guest Agent service for Red Hat Enterprise Linux Desktop 6, HPC Node 6, Server 6, Workstation 6, Desktop Supplementary 6, Server Supplementary 6, Supplementary AUS 6.4, Supplementary EUS 6.4.z, and Workstation Supplementary 6, when installing on Windows, allows local users to gain privileges via a crafted program in an unspecified folder.

Affected Software

Name Vendor Start Version End Version
Enterprise_linux Redhat 6.0 (including) 6.0 (including)
Enterprise_linux_desktop_supplementary Redhat 6.0 (including) 6.0 (including)
Enterprise_linux_server_supplementary Redhat 6.0 (including) 6.0 (including)
Enterprise_linux_server_supplementary Redhat 6.4 (including) 6.4 (including)
Enterprise_linux_server_supplementary Redhat 6.4.z (including) 6.4.z (including)
Enterprise_linux_workstation_supplementary Redhat 6.0 (including) 6.0 (including)
Red Hat Enterprise Linux 6 RedHat qemu-kvm-2:0.12.1.2-2.355.el6_4.6 *
Supplementary for Red Hat Enterprise Linux 6 RedHat virtio-win-0:1.6.5-6.el6_4 *

References