|
|
Log in / Subscribe / Register

qemu-kvm: privilege escalation

Package(s):qemu-kvm CVE #(s):CVE-2013-2231
Created:July 23, 2013 Updated:July 26, 2013
Description: From the Red Hat advisory:

An unquoted search path flaw was found in the way the QEMU Guest Agent service installation was performed on Windows. Depending on the permissions of the directories in the unquoted search path, a local, unprivileged user could use this flaw to have a binary of their choosing executed with SYSTEM privileges.

Alerts:
Oracle ELSA-2013-1553 qemu-kvm 2013-11-27
Mageia MGASA-2013-0235 qemu 2013-07-26
CentOS CESA-2013:1100 qemu-kvm 2013-07-22
Scientific Linux SL-qemu-20130722 qemu-kvm 2013-07-22
Oracle ELSA-2013-1100 qemu-kvm 2013-07-22
Red Hat RHSA-2013:1101-01 virtio-win 2013-07-22
Red Hat RHSA-2013:1100-01 qemu-kvm 2013-07-22
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds