Check: 2015-A-0112
windows 7 iavm:
2015-A-0112
(in version v1 r32)
Title
Oracle Linux Virtualization Buffer Overflow Vulnerability (Cat I impact)
Discussion
Oracle has addressed a vulnerability in its implementation of Qemu Floppy Disk Controller code in various products. To exploit this vulnerability, an attacker would first gain access to a vulnerable system and exploit a vulnerability to elevate privileges and escape the virtual machine sandbox. If successfully exploited, the attacker would gain access to sensitive data and compromise the affected system.
Check Content
Fix Text
Additional Identifiers
Rule ID:
Vulnerability ID: V-60735
Group Title:
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| No CCIs are assigned to this check |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| No controls are assigned to this check |