Vulnerability CVE-2008-2004: Information

Description

The drive_init function in QEMU 0.9.1 determines the format of a raw disk image based on the header, which allows local guest users to read arbitrary files on the host by modifying the header to identify a different format, which is used when the guest is restarted.

Severity: MEDIUM (4.9)

URL: https://nvd.nist.gov/vuln/detail/CVE-2008-2004
Published: May 13, 2008
Modified: Sept. 29, 2017
Error type identifier: CWE-200

References to Advisories, Solutions, and Tools

Hyperlink
Resource
[Qemu-devel] 20080428 [4277] add format= to drive options (CVE-2008-2004)
  • Exploit
http://svn.savannah.gnu.org/viewvc/?view=rev&root=qemu&revision=4277
    29101
      30111
      • Vendor Advisory
      RHSA-2008:0194
        29963
          SUSE-SR:2008:013
            MDVSA-2008:162
              30717
                29129
                  USN-776-1
                    35062
                      qemu-driveinit-security-bypass(42268)
                        oval:org.mitre.oval:def:11021

                            1. Configuration 1

                              cpe:2.3:a:qemu:qemu:0.9.1:*:*:*:*:*:*:*
                          VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
                          Version: v24.4.2
                          Back to top