Citrix XenServer Multiple Infinite Loop Guest-to-Host DoS (CTX202583)

This script is Copyright (C) 2015-2017 Tenable Network Security, Inc.


Synopsis :

The remote host is affected by multiple denial of service
vulnerabilities.

Description :

The version of Citrix XenServer running on the remote host is affected
by multiple denial of service vulnerabilities :

- An infinite loop condition exists in the KVM subsystem
that is triggered when handling a stream of #AC
(Alignment Check) exceptions. A local attacker within a
virtualized guest can exploit this to cause a host OS
panic or hang, resulting in a denial of service
condition. (CVE-2015-5307)

- An infinite loop condition exists in the KVM subsystem
that is triggered when handling a stream of #DB (Debug)
exceptions. A local attacker within a virtualized guest
can exploit this to cause a host OS panic or hang,
resulting in a denial of service condition.
(CVE-2015-8104)

See also :

https://support.citrix.com/article/CTX202583

Solution :

Apply the relevant hotfix referenced in the vendor advisory.

Risk factor :

Medium / CVSS Base Score : 5.5
(CVSS2#AV:A/AC:L/Au:S/C:N/I:N/A:C)
CVSS Temporal Score : 5.2
(CVSS2#E:F/RL:U/RC:ND)
Public Exploit Available : true

Family: Misc.

Nessus Plugin ID: 87012 ()

Bugtraq ID: 77524
77528

CVE ID: CVE-2015-5307
CVE-2015-8104

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now