Vulnerabilities

CVE-2008-2004

by Fred · 12/05/2008

The drive_init function in QEMU 0.9.1 determines the format of a raw disk image based on the header, which allows local guest users to read arbitrary files on the host by modifying the header to identify a different format, which is used when the guest is restarted.

Date published : 2008-05-12

http://www.securityfocus.com/bid/29101

http://svn.savannah.gnu.org/viewvc/?view=rev&root=qemu&revision=4277

Similar

Tags: Cybersecurity Alert