CVE-2014-3798
MEDIUMCitrix XenServer 6.2 SP1 and earlier - Denial of Service via Crafted Ethernet Frame
Title source: llmDescription
The Windows Guest Tools in Citrix XenServer 6.2 SP1 and earlier allows remote attackers to cause a denial of service (guest OS crash) via a crafted Ethernet frame.
References (4)
Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1030304
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/67693
Patch, Vendor Advisory x_refsource_confirm
http://support.citrix.com/article/CTX140814
Permissions Required, Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/58455
Scores
CVSS v3
6.5
EPSS
0.0453
EPSS Percentile
89.3%
Attack Vector
ADJACENT_NETWORK
CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-20
Status
published
Products (4)
citrix/xenserver
6.0
citrix/xenserver
6.0.2
citrix/xenserver
6.1.0
citrix/xenserver
6.2.0
Published
Jul 11, 2019
Tracked Since
Feb 18, 2026