CVE-2014-3798

Published: Jul 11, 2019Modified: Nov 21, 2024

6.5

Vector

CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 2.8 / Impact: 3.6

Source: NVD

Description

The Windows Guest Tools in Citrix XenServer 6.2 SP1 and earlier allows remote attackers to cause a denial of service (guest OS crash) via a crafted Ethernet frame.

Affected (4)

Products: Citrix: Xenserver

Citrix

1 product

Xenserver

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Citrix Xenserver	Version 6.0.2
Citrix Xenserver	Version 6.0
Citrix Xenserver	Version 6.1.0
Citrix Xenserver	Version 6.2.0

Related CWEs

CWE-20

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (8)

http://secunia.com/advisories/58455

Source: cve@mitre.org

Permissions RequiredThird Party Advisory

http://support.citrix.com/article/CTX140814

Source: cve@mitre.org

PatchVendor Advisory

http://www.securityfocus.com/bid/67693

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1030304

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

http://secunia.com/advisories/58455

Source: af854a3a-2127-422b-91ae-364da2661108

Permissions RequiredThird Party Advisory

http://support.citrix.com/article/CTX140814

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.securityfocus.com/bid/67693

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1030304

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

Timeline

No history available yet.