bl4ck5un

3 exploits Active since Aug 2013
CVE-2013-6375 NOMISEC
Xen 4.2.x-4.3.x - Denial of Service or Privilege Escalation via TLB Flush Mismanagement
Xen 4.2.x and 4.3.x, when using Intel VT-d for PCI passthrough, does not properly flush the TLB after clearing a present translation table entry, which allows local guest administrators to cause a denial of service or gain privileges via unspecified vectors related to an "inverted boolean parameter."
1 stars
CVE-2013-2072 NOMISEC WORKING POC
Xen 4.0.x-4.2.x - Buffer Overflow in Python Bindings for xc_vcpu_setaffinity
Buffer overflow in the Python bindings for the xc_vcpu_setaffinity call in Xen 4.0.x, 4.1.x, and 4.2.x allows local administrators with permissions to configure VCPU affinity to cause a denial of service (memory corruption and xend toolstack crash) and possibly gain privileges via a crafted cpumap.
CVE-2013-4348 NOMISEC WORKING POC
Linux Kernel <= 3.12 - Denial of Service via IHL Field in IPIP Packet
The skb_flow_dissect function in net/core/flow_dissector.c in the Linux kernel through 3.12 allows remote attackers to cause a denial of service (infinite loop) via a small value in the IHL field of a packet with IPIP encapsulation.