CVE-2007-4993 – Xen 3.0.3 - pygrub TOOLS/PYGRUB/SRC/GRUBCONF.PY Local Command Injection

https://notcve.org/view.php?id=CVE-2007-4993

pygrub (tools/pygrub/src/GrubConf.py) in Xen 3.0.3, when booting a guest domain, allows local users with elevated privileges in the guest domain to execute arbitrary commands in domain 0 via a crafted grub.conf file whose contents are used in exec statements. pygrub (tools/pygrub/src/GrubConf.py) en Xen 3.0.3, en el arranque de un dominio invitado, permite a usuarios locales con privilegios elevados en el dominio invitado ejecutar comandos de su elección en el dominio 0 mediante un fichero grub.conf manipulado artesanalmente cuyo contenido es utilizado en sentencias exec. • https://www.exploit-db.com/exploits/30620 http://bugzilla.xensource.com/bugzilla/show_bug.cgi?id=1068 http://secunia.com/advisories/26986 http://secunia.com/advisories/27047 http://secunia.com/advisories/27072 http://secunia.com/advisories/27085 http://secunia.com/advisories/27103 http://secunia.com/advisories/27141 http://secunia.com/advisories/27161 http://secunia.com/advisories/27486 http://www.debian.org/security/2007/dsa-1384 http://www.mandriva.com/security/advisor • CWE-20: Improper Input Validation •