Oracle VM VirtualBox Extensions Local Privilege Escalation Vulnerability Network Vulnerability

Summary

This host is installed with Oracle VirtualBox and is local privilege escalation Vulnerability vulnerability.

Impact

Successful exploitation will let the local users to gain escalated privileges. Impact Level: Application.

Solution

Apply the patch from below link, http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html ***** NOTE: Ignore this warning, if above mentioned workaround is manually applied. *****

Insight

The flaw is caused by an unspecified error related to various extensions, which could allow local authenticated attackers to gain elevated privileges.

Affected

Oracle VirtualBox version 4.0

References

http://secunia.com/advisories/42985
http://www.vupen.com/english/advisories/2011/0152

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-4414

CVSS	Base Score: 6.8 AV:L/AC:L/Au:S/C:C/I:C/A:C

Related Vulnerabilities

Apache Tomcat XML External Entity Information Disclosure Vulnerability
Apache Traffic Server Remote DNS Cache Poisoning Vulnerability
Avant Browser Address Bar Spoofing Vulnerability
Aardvark Topsites Multiple Vulnerabilities
Adobe Flash Player Unspecified Cross-Site Scripting Vulnerability June-2011 (Linux)

Take action and discover your vulnerabilities