CVE-2013-2007
http://xenbits.xen.org/xsa/advisory-51.html
qemu guest agent (qga) insecure file permissions
The qemu guest agent creates files with insecure permissions when started in daemon mode.
improper permission set
No
The qemu guest agent is not used by default in Xen systems.
If it is used in a particular guest, unprivileged guest processes might be able to escalate their privilege to that of the guest.
privilege escalation