6.5

CVE-2014-3798

The Windows Guest Tools in Citrix XenServer 6.2 SP1 and earlier allows remote attackers to cause a denial of service (guest OS crash) via a crafted Ethernet frame.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
CitrixXenserver Version6.0
CitrixXenserver Version6.0.2
CitrixXenserver Version6.1.0
CitrixXenserver Version6.2.0
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.93% 0.773
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 6.5 2.8 3.6
CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov 6.1 6.5 6.9
AV:A/AC:L/Au:N/C:N/I:N/A:C
CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://secunia.com/advisories/58455
Third Party Advisory
Permissions Required
http://support.citrix.com/article/CTX140814
Patch
Vendor Advisory
http://www.securityfocus.com/bid/67693
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1030304
Third Party Advisory
VDB Entry