CVE-2016-9380

Published: Jan 23, 2017Modified: May 13, 2026

7.5

Vector

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N

Exploitability: 1.1 / Impact: 5.8

Source: NVD

Description

The pygrub boot loader emulator in Xen, when nul-delimited output format is requested, allows local pygrub-using guest OS administrators to read or delete arbitrary files on the host via NUL bytes in the bootloader configuration file.

Affected (5)

Products: Xen: Xen · Citrix: Xenserver

1 product

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Xen Xen	All versions

Configuration B

4 vulnerable

Vulnerable Software	Affected Versions
Citrix Xenserver	Version 6.0.2
Citrix Xenserver	Version 6.2.0
Citrix Xenserver	Version 6.5
Citrix Xenserver	Version 7.0

Related CWEs

CWE-20

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (12)

http://www.securityfocus.com/bid/94473

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1037347

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

http://xenbits.xen.org/xsa/advisory-198.html

Source: cve@mitre.org

PatchVendor Advisory

http://xenbits.xen.org/xsa/xsa198.patch

Source: cve@mitre.org

PatchVendor Advisory

https://security.gentoo.org/glsa/201612-56

Source: cve@mitre.org

https://support.citrix.com/article/CTX218775

Source: cve@mitre.org

PatchThird Party Advisory

http://www.securityfocus.com/bid/94473