Unrated severityNVD Advisory· Published Oct 28, 2007· Updated Apr 23, 2026
CVE-2007-3919
CVE-2007-3919
Description
(1) xenbaked and (2) xenmon.py in Xen 3.1 and earlier allow local users to truncate arbitrary files via a symlink attack on /tmp/xenq-shm.
Affected products
2cpe:2.3:a:xensource_inc:xen:3.0.3_0_1:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:xensource_inc:xen:3.0.3_0_1:*:*:*:*:*:*:*
- cpe:2.3:a:xensource_inc:xen:3.0.3_0_3:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
18- secunia.com/advisories/27389nvdVendor Advisory
- secunia.com/advisories/27408nvdVendor Advisory
- secunia.com/advisories/27497nvdVendor Advisory
- bugs.debian.org/cgi-bin/bugreport.cginvd
- osvdb.org/41342nvd
- osvdb.org/41343nvd
- secunia.com/advisories/27486nvd
- secunia.com/advisories/29963nvd
- www.debian.org/security/2007/dsa-1395nvd
- www.mandriva.com/security/advisoriesnvd
- www.redhat.com/support/errata/RHSA-2008-0194.htmlnvd
- www.securityfocus.com/bid/26190nvd
- www.securitytracker.com/idnvd
- www.vupen.com/english/advisories/2007/3621nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/37403nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9913nvd
- www.redhat.com/archives/fedora-package-announce/2007-November/msg00004.htmlnvd
- www.redhat.com/archives/fedora-package-announce/2007-November/msg00075.htmlnvd
News mentions
0No linked articles in our index yet.