Citrix XenServer QEMU FDC Buffer Overflow RCE (CTX201078) (VENOM)
High Nessus Plugin ID 83763
SynopsisThe remote host is affected by a buffer overflow vulnerability.
DescriptionThe remote host is running a version of Citrix XenServer that is affected by a flaw in the Floppy Disk Controller (FDC) in the bundled QEMU software due to an overflow condition in hw/block/fdc.c when handling certain commands. An attacker, with access to an account on the guest operating system with privilege to access the FDC, can exploit this flaw to execute arbitrary code in the context of the hypervisor process on the host system.
SolutionApply the relevant hotfix referenced in the vendor advisory.