FreeBSD : xen-tools -- delimiter injection vulnerabilities in pygrub (59f79c99-ba4d-11e6-ae1b-002590263bf5)

Medium Nessus Plugin ID 95511


The remote FreeBSD host is missing a security-related update.


The Xen Project reports :

pygrub, the boot loader emulator, fails to quote (or sanity check) its results when reporting them to its caller.

A malicious guest administrator can obtain the contents of sensitive host files (an information leak). Additionally, a malicious guest administrator can cause files on the host to be removed, causing a denial of service. In some unusual host configurations, ability to remove certain files may be usable for privilege escalation.


Update the affected package.

See Also

Plugin Details

Severity: Medium

ID: 95511

File Name: freebsd_pkg_59f79c99ba4d11e6ae1b002590263bf5.nasl

Version: $Revision: 3.4 $

Type: local

Published: 2016/12/05

Modified: 2017/07/05

Dependencies: 12634

Risk Information

Risk Factor: Medium


Base Score: 4.6

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P


Base Score: 7.9

Vector: CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:xen-tools, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 2016/12/04

Vulnerability Publication Date: 2016/11/22

Reference Information

CVE: CVE-2016-9379, CVE-2016-9380