Unknown
CVE-2015-8552
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
Add References:
CVE-2015-8552
MITRE ATT&CK
Collection
Command and Control
Credential Access
Defense Evasion
Discovery
Execution
Exfiltration
Impact
Initial Access
Lateral Movement
Persistence
Privilege Escalation
Topic Tags
Description
The PCI backend driver in Xen, when running on an x86 system and using Linux 3.1.x through 4.3.x as the driver domain, allows local guest administrators to generate a continuous stream of WARN messages and cause a denial of service (disk consumption) by leveraging a system with access to a passed-through MSI or MSI-X capable physical PCI device and XEN_PCI_OP_enable_msi operations, aka “Linux pciback missing sanity checks.”
Add Assessment
No one has assessed this topic. Be the first to add your voice to the community.
CVSS V3 Severity and Metrics
General Information
Vendors
- canonical,
- debian,
- novell,
- xen
Products
- debian linux 6.0,
- suse linux enterprise debuginfo 11,
- suse linux enterprise real time extension 11,
- suse linux enterprise real time extension 12,
- ubuntu linux 12.04,
- xen 3.1.3,
- xen 3.1.4,
- xen 3.2.0,
- xen 3.2.1,
- xen 3.2.2,
- xen 3.2.3,
- xen 3.3.0,
- xen 3.3.1,
- xen 3.3.2,
- xen 3.4.0,
- xen 3.4.1,
- xen 3.4.2,
- xen 3.4.3,
- xen 3.4.4,
- xen 4.0.0,
- xen 4.0.1,
- xen 4.0.2,
- xen 4.0.3,
- xen 4.0.4,
- xen 4.1.0,
- xen 4.1.1,
- xen 4.1.2,
- xen 4.1.3,
- xen 4.1.4,
- xen 4.1.5,
- xen 4.1.6,
- xen 4.1.6.1,
- xen 4.2.0,
- xen 4.2.1,
- xen 4.2.2,
- xen 4.2.3,
- xen 4.2.4,
- xen 4.2.5,
- xen 4.3.0,
- xen 4.3.1,
- xen 4.3.2,
- xen 4.3.3,
- xen 4.3.4
References
Advisory
Additional Info
Technical Analysis
Report as Exploited in the Wild
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
