Summary
This host is installed with Oracle VM VirtualBox and is prone to multiple unspecified vulnerabilities.
Impact
Successful exploitation will allow local users to affect confidentiality, integrity, and availability via unknown vectors.
Impact Level: Application
Solution
Apply the patch from below link,
http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html
Insight
The flaw is due to unspecified errors related to the 'core' subcomponent.
Affected
Oracle VM VirtualBox before versions 3.2.24, 4.0.26, 4.1.34, 4.2.26, and 4.3.14
Detection
Get the installed version of Oracle VM VirtualBox and check the version is vulnerable or not.
References
Severity
Classification
-
CVE CVE-2014-2487, CVE-2014-4261 -
CVSS Base Score: 6.9
AV:L/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Adobe LiveCycle Designer Untrusted Search Path Vulnerability (Windows)
- Adobe Flash Player Multiple Security Bypass Vulnerabilities - 01 Feb14 (Linux)
- Apple iTunes Tutorials Window Security Bypass Vulnerability (Windows)
- Adobe Reader Cross-Site Scripting & Denial of Service Vulnerabilities (Windows)
- Adobe Flash Player Multiple Security Bypass Vulnerabilities - 01 Feb14 (Windows)