Skip Ribbon Commands
Skip to main content
Computer Emergency Response Team of Mauritius (CERT-MU)
Computer Emergency Response Team of Mauritius>CERT-MU Vulnerability Note VN-2017-23

CERT-MU Vulnerability Note VN-2017-23


Vulnerability in Red Hat SPICE server
Severity Rating: High
System Affected:  
 
·         Red Hat Enterprise Linux Desktop, Red Hat Enterprise Linux HPC Node, Red Hat Enterprise Linux Server, Red Hat Enterprise Linux Server TUS, Red Hat Enterprise Linux Workstation
 
Description:
A vulnerability have been identified in Red Hat SPICE server that  could allow an authenticated, remote attacker to cause a denial of service (DoS) condition or execution of  arbitrary code on a targeted system.

The vulnerability exists due to insufficient validation of user-supplied input by the affected server. An attacker could exploit this vulnerability by sending crafted messages to an affected server. A successful exploitation of this vulnerability could allow the attacker to cause a DoS condition or cause the execution of arbitrary code on the targeted system.



Source:
Solution
Users are advised to apply updates.
Cisco Security Advisories
 
 
Vendor Information
Cisco
 
CVE Information
 
References
Cisco Security Advisories
 
 
 
Contact Information
 
Postal address
Mauritian Computer Emergency Response Team (CERT-MU)
National Computer Board
7th Floor, Stratton Court
La Poudriere Street
Port Louis