Summary
This host is installed with Oracle VM VirtualBox and is prone to multiple unspecified vulnerabilities.
Impact
Successful exploitation will allow local users to affect confidentiality, integrity, and availability via unknown vectors.
Impact Level: Application
Solution
Apply the patch from below link,
http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html
Insight
The flaw is due to unspecified errors related to the 'core' subcomponent.
Affected
Oracle VM VirtualBox before versions 3.2.24, 4.0.26, 4.1.34, 4.2.26, and 4.3.14
Detection
Get the installed version of Oracle VM VirtualBox and check the version is vulnerable or not.
References
Severity
Classification
-
CVE CVE-2014-2487, CVE-2014-4261 -
CVSS Base Score: 6.9
AV:L/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Apple Safari 'SRC' Remote Denial Of Service Vulnerability
- Apple QuickTime Multiple Arbitrary Code Execution Vulnerabilities (Win)
- Asterisk SIP REGISTER Response Username Enumeration Vulnerability
- Avant Browser Address Bar Spoofing Vulnerability
- Adobe Reader Multiple Unspecified Vulnerabilities Jun06 (Mac OS X)