CVE-2013-2072
Xen 4.0.x-4.2.x - Buffer Overflow in Python Bindings for xc_vcpu_setaffinity
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2013-2072. PoCs published by bl4ck5un.
AI-analyzed exploit summary This repository contains a proof-of-concept exploit for CVE-2013-2072, a vulnerability in Xen's vCPU affinity handling. The exploit leverages improper bounds checking in the `xc_vcpu_setaffinity` function to achieve privilege escalation or denial of service.
Description
Buffer overflow in the Python bindings for the xc_vcpu_setaffinity call in Xen 4.0.x, 4.1.x, and 4.2.x allows local administrators with permissions to configure VCPU affinity to cause a denial of service (memory corruption and xend toolstack crash) and possibly gain privileges via a crafted cpumap.
Exploits (1)
This repository contains a proof-of-concept exploit for CVE-2013-2072, a vulnerability in Xen's vCPU affinity handling. The exploit leverages improper bounds checking in the `xc_vcpu_setaffinity` function to achieve privilege escalation or denial of service.