Xen Privilege Escalation (XSA-182) (Bunker Buster)

High Nessus Plugin ID 92701


The remote Xen hypervisor installation is missing a security update.


According to its self-reported version number, the remote Xen hypervisor is affected by a privilege escalation vulnerability in the paravirtualization (PV) pagetable implementation due to incorrect usage of fast-paths for making updates to pre-existing pagetable entries. An attacker with administrative privileges on a PV guest can exploit this vulnerability to gain administrative privileges on the host operating system. This vulnerability only affects PV guests on x86 hardware; HVM and ARM guests are not affected.

Note that Nessus has checked the changeset versions based on the xen.git change log. Nessus did not check guest hardware configurations or if patches were applied manually to the source code before a recompile and reinstall.


Apply the appropriate patch as referenced in the vendor advisory.

See Also





Plugin Details

Severity: High

ID: 92701

File Name: xen_server_XSA-182.nasl

Version: $Revision: 1.6 $

Type: local

Family: Misc.

Published: 2016/08/03

Modified: 2017/02/03

Dependencies: 78089

Risk Information

Risk Factor: High


Base Score: 8.3

Temporal Score: 6.1

Vector: CVSS2#AV:A/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:U/RL:OF/RC:C


Base Score: 9.6

Temporal Score: 8.3

Vector: CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/o:xen:xen

Required KB Items: installed_sw/Xen Hypervisor, Settings/ParanoidReport

Exploit Available: false

Exploit Ease: No known exploits are available

Patch Publication Date: 2016/07/26

Vulnerability Publication Date: 2016/07/26

Reference Information

CVE: CVE-2016-6258

BID: 92131

OSVDB: 142140

IAVB: 2016-B-0118