Xen Privilege Escalation (XSA-182) (Bunker Buster)

This script is Copyright (C) 2016-2017 Tenable Network Security, Inc.


Synopsis :

The remote Xen hypervisor installation is missing a security update.

Description :

According to its self-reported version number, the remote Xen
hypervisor is affected by a privilege escalation vulnerability in the
paravirtualization (PV) pagetable implementation due to incorrect
usage of fast-paths for making updates to pre-existing pagetable
entries. An attacker with administrative privileges on a PV guest can
exploit this vulnerability to gain administrative privileges on the
host operating system. This vulnerability only affects PV guests on
x86 hardware; HVM and ARM guests are not affected.

Note that Nessus has checked the changeset versions based on the
xen.git change log. Nessus did not check guest hardware configurations
or if patches were applied manually to the source code before a
recompile and reinstall.

See also :

https://xenbits.xen.org/xsa/advisory-182.html
https://xenbits.xen.org/gitweb/?p=xen.git;a=summary
http://www.nessus.org/u?5242c966
http://www.nessus.org/u?83872af7

Solution :

Apply the appropriate patch as referenced in the vendor advisory.

Risk factor :

High / CVSS Base Score : 8.3
(CVSS2#AV:A/AC:L/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 6.1
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Family: Misc.

Nessus Plugin ID: 92701 ()

Bugtraq ID: 92131

CVE ID: CVE-2016-6258

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now