This host is installed with Sun xVM VirtualBox and is prone to Insecure Temporary Files vulnerability.

Successful exploitation will let the attacker perform malicious actions with the escalated previleges. Impact Level: Application

Upgrade to the latest version 2.0.6 or above. http://www.virtualbox.org/wiki/Downloads

Error is due to insecured handling of temporary files in the 'AcquireDaemonLock' function in ipcdUnix.cpp. This allows local users to overwrite arbitrary files via a symlink attack on a '/tmp/.vbox-$USER-ipc/lock' temporary file.

Sun xVM VirutalBox version prior to 2.0.6 versions on all Linux platforms.

• http://secunia.com/Advisories/32851
• http://www.virtualbox.org/wiki/Changelog

---

Updated on 2015-03-25