CVE-2011-3262

2011-08-1920:55:01

CWE-399

mitre

web.nvd.nist.gov

xen

cve-2011-3262

denial of service

security vulnerability

nvd

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

AI Score

Confidence

Low

EPSS

Percentile

5.1%

JSON

tools/libxc/xc_dom_bzimageloader.c in Xen 3.2, 3.3, 4.0, and 4.1 allows local users to cause a denial of service (management software infinite loop and management domain resource consumption) via unspecified vectors related to “Lack of error checking in the decompression loop.”

Affected configurations

Nvd

Node

citrixxenMatch3.2.0

citrixxenMatch3.3.0

citrixxenMatch4.0.0

citrixxenMatch4.1.0

VendorProductVersionCPE
citrixxen3.2.0cpe:2.3:a:citrix:xen:3.2.0:*:*:*:*:*:*:*
citrixxen3.3.0cpe:2.3:a:citrix:xen:3.3.0:*:*:*:*:*:*:*
citrixxen4.0.0cpe:2.3:a:citrix:xen:4.0.0:*:*:*:*:*:*:*
citrixxen4.1.0cpe:2.3:a:citrix:xen:4.1.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
citrix	xen	3.2.0	cpe:2.3:a:citrix:xen:3.2.0:::::::*
citrix	xen	3.3.0	cpe:2.3:a:citrix:xen:3.3.0:::::::*
citrix	xen	4.0.0	cpe:2.3:a:citrix:xen:4.0.0:::::::*
citrix	xen	4.1.0	cpe:2.3:a:citrix:xen:4.1.0:::::::*