Privilege Escalation via L3 Recursive Pagetables in Xen

Privilege Escalation via L3 Recursive Pagetables in Xen

CVE-2016-7092 · MEDIUM Severity

AV:L/AC:L/AU:S/C:C/I:C/A:C

The get_page_from_l3e function in arch/x86/mm.c in Xen allows local 32-bit PV guest OS administrators to gain host OS privileges via vectors related to L3 recursive pagetables.

Learn more about our Web Application Penetration Testing UK.