CVE-2008-3687

Heap-based buffer overflow in the flask_security_label function in Xen 3.3, when compiled with the XSM:FLASK module, allows unprivileged domain users (domU) to execute arbitrary code via the flask_op hypercall.
Configurations

Configuration 1

cpe:2.3:a:xen:xen_flask_module:*:*:*:*:*:*:*:*
cpe:2.3:a:xen:xen:3.3:*:*:*:*:*:*:*

Information

Published : 2008-08-14 10:41

Updated : 2017-08-08 01:32


NVD link : CVE-2008-3687

Mitre link : CVE-2008-3687

Products Affected
No products.
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer