Red Hat libvirt, possibly 0.6.1 through 0.8.2, looks up disk backing stores without referring to the user-defined main disk format, which might allow guest OS users to read arbitrary files on the host OS, and possibly have unspecified other impact, via unknown vectors.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2010-08-19 11:00
Updated : 2010-10-29 22:41
NVD link : CVE-2010-2237
Mitre link : CVE-2010-2237
JSON object : View
CWE
CWE-264
Permissions, Privileges, and Access Controls
Products Affected
libvirt
- libvirt