CVE-2016-9386

Published: Jan 23, 2017Modified: May 13, 2026

7.8

Vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

The x86 emulator in Xen does not properly treat x86 NULL segments as unusable when accessing memory, which might allow local HVM guest users to gain privileges via vectors involving "unexpected" base/limit values.

Affected (5)

Products: Citrix: Xenserver · Xen: Xen

1 product

1 product

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Citrix Xenserver	Version 6.0.2
Citrix Xenserver	Version 6.2.0
Citrix Xenserver	Version 6.5
Citrix Xenserver	Version 7.0

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Xen Xen	All versions

Related CWEs

CWE-264

References (10)

http://www.securityfocus.com/bid/94471

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1037340

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

http://xenbits.xen.org/xsa/advisory-191.html

Source: cve@mitre.org

PatchVendor Advisory

https://security.gentoo.org/glsa/201612-56

Source: cve@mitre.org

https://support.citrix.com/article/CTX218775

Source: cve@mitre.org

PatchThird Party Advisory

http://www.securityfocus.com/bid/94471