Citrix XenServer Multiple Denial of Service Vulnerabilities

by Carol~ Moderator - 11/13/12 11:41 AM

In Reply to: VULNERABILITIES / FIXES - November 13, 2012 by Carol~ Moderator

Release Date : 2012-11-13

Criticality level : Not critical
Impact : DoS
Where : Local system
Solution Status: Vendor Patch

Operating System : Citrix XenServer 5.0
Citrix XenServer 5.5
Citrix XenServer 5.6
Citrix XenServer 6.0
Citrix XenServer 6.1

Description:
Citrix has acknowledged some vulnerabilities in XenServer, which can be exploited by malicious, local users in a guest virtual machine to cause a DoS (Denial of Service).

The vulnerabilities are reported in versions 6.1 and prior.

Solution:
Apply hotfixes.

Original Advisory:
http://support.citrix.com/article/CTX135458

http://secunia.com/advisories/51214/