NuytsTech Security

CVE-2016-7116

by ·

Directory traversal vulnerability in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allows local guest OS administrators to access host files outside the export path via a .. (dot dot) in an unspecified string.

Date published : 2016-12-09

http://www.securityfocus.com/bid/92680

http://git.qemu.org/?p=qemu.git;a=commit;h=56f101ecce0eafd09e2daf1c4eeb1377d6959261

Tags: