CVE-2007-6207
published 2007-12-04CVE-2007-6207: Xen 3.x, possibly before 3.1.2, when running on IA64 systems, does not check the RID value for mov_to_rr, which allows a VTi domain to read memory of other…
PriorityP47low2.1CVSS 2.0
AVLACLAuNCPINAN
EPSS
0.35%
26.5th percentile
Xen 3.x, possibly before 3.1.2, when running on IA64 systems, does not check the RID value for mov_to_rr, which allows a VTi domain to read memory of other domains.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| xensource_inc | xen | <= 3.1.1 | — |
CVSS provenance
nvdv2.02.1LOWAV:L/AC:L/Au:N/C:P/I:N/A:N
vendor_redhat2.1LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
Security: some HVM domain can access another domain memory.
vendor_redhat·2007-11-22·CVSS 2.1
CVE-2007-6207 [LOW] Security: some HVM domain can access another domain memory.
Security: some HVM domain can access another domain memory.
Xen 3.x, possibly before 3.1.2, when running on IA64 systems, does not check the RID value for mov_to_rr, which allows a VTi domain to read memory of other domains.
GHSA
GHSA-9c53-jf8m-pjf3: Xen 3
ghsa_unreviewed·2022-05-01
CVE-2007-6207 [LOW] CWE-20 GHSA-9c53-jf8m-pjf3: Xen 3
Xen 3.x, possibly before 3.1.2, when running on IA64 systems, does not check the RID value for mov_to_rr, which allows a VTi domain to read memory of other domains.
No detection rules found.
No public exploits indexed.
http://lists.xensource.com/archives/html/xen-announce/2007-11/msg00000.htmlhttp://lists.xensource.com/archives/html/xen-ia64-devel/2007-10/msg00189.htmlhttp://osvdb.org/41341http://secunia.com/advisories/27915http://secunia.com/advisories/29236http://www.redhat.com/support/errata/RHSA-2008-0154.htmlhttp://www.securityfocus.com/bid/26716https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9471http://lists.xensource.com/archives/html/xen-announce/2007-11/msg00000.htmlhttp://lists.xensource.com/archives/html/xen-ia64-devel/2007-10/msg00189.htmlhttp://osvdb.org/41341http://secunia.com/advisories/27915http://secunia.com/advisories/29236http://www.redhat.com/support/errata/RHSA-2008-0154.htmlhttp://www.securityfocus.com/bid/26716https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9471
2007-12-04
Published