xen < 3.0.3-146 Venom Vulnerability

high Log Correlation Engine Plugin ID 801939

Synopsis

The xen server is vulnerable to the Venom remote code execution attack

Description

The remote host is running a version of xen which is vulnerable to an out-of-bounds memory access flaw, which can cause a crash or execution of arbitrary code on the host.

Solution

Upgrade to xen-3.0.3-146.

See Also

https://rhn.redhat.com/errata/RHSA-2015-1002.html

Plugin Details

Severity: High

ID: 801939

Family: Generic

Nessus ID: 83420, 83421, 83418, 83419, 83422, 83429, 83430, 83425, 83428, 83426, 83427, 83457, 83460, 83458, 83459, 83438

Reference Information

CVE: CVE-2015-3456