Detections
Analytics
F5 Networks BIG-IP : QEMU vulnerability (SOL16620) (Venom)
high Nessus Plugin ID 83749
Language:
Synopsis
The remote device is missing a vendor-supplied security patch.Description
An out-of-bounds memory access flaw, also known as 'VENOM,' was found in the way QEMU's virtual Floppy Disk Controller (FDC) handled FIFO buffer access while processing certain FDC commands. A privileged guest user could use this flaw to crash the guest or, potentially, execute arbitrary code on the host with the privileges of the host's QEMU process corresponding to the guest.Solution
Upgrade to one of the non-vulnerable versions listed in the F5 Solution SOL16620.See Also
Plugin Details
Severity: High
ID: 83749
File Name: f5_bigip_SOL16620.nasl
Version: 2.27
Type: local
Published: 5/21/2015
Updated: 9/28/2023
Configuration: Enable paranoid mode
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: High
Score: 8.1
CVSS v2
Risk Factor: High
Base Score: 7.7
Temporal Score: 6.7
Vector: CVSS2#AV:A/AC:L/Au:S/C:C/I:C/A:C
Vulnerability Information
CPE: cpe:/a:f5:big-ip_link_controller, cpe:/h:f5:big-ip_protocol_security_manager, cpe:/a:f5:big-ip_application_visibility_and_reporting, cpe:/a:f5:big-ip_policy_enforcement_manager, cpe:/a:f5:big-ip_wan_optimization_manager, cpe:/h:f5:big-ip, cpe:/a:f5:big-ip_application_security_manager, cpe:/a:f5:big-ip_advanced_firewall_manager, cpe:/a:f5:big-ip_local_traffic_manager, cpe:/a:f5:big-ip_access_policy_manager, cpe:/a:f5:big-ip_global_traffic_manager, cpe:/a:f5:big-ip_application_acceleration_manager, cpe:/a:f5:big-ip_webaccelerator
Required KB Items: Host/local_checks_enabled, Settings/ParanoidReport, Host/BIG-IP/hotfix, Host/BIG-IP/modules, Host/BIG-IP/version
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 5/13/2015
Vulnerability Publication Date: 5/13/2015
Exploitable With
Core Impact
Reference Information
CVE: CVE-2015-3456
BID: 74640
IAVA: 2015-A-0115-S