CVE-2009-3525
CVE-2009-3525
The pyGrub boot loader in Xen 3.0.3, 3.3.0, and Xen-3.3.1 does not support the password option in grub.conf for para-virtualized guests, which allows attackers with access to the para-virtualized guest console to boot the guest or modify the guest's kernel boot parameters without providing the expected password.
Affected products
n/a · n/apublic PoCs found — 1
exploitdbwww.exploit-db.com/exploits/33255unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00002.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=525740https://bugzilla.redhat.com/show_bug.cgi?id=525740#c0http://secunia.com/advisories/36908https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9466http://www.openwall.com/lists/oss-security/2009/09/25/1http://www.redhat.com/support/errata/RHSA-2009-1472.htmlhttp://www.securityfocus.com/bid/36523http://www.securitytracker.com/id?1022950http://xenbits.xensource.com/xen-unstable.hg?rev/8f783adc0ee3