Kaspersky Threats

Solutions for:

Kaspersky ID:

KLA10888

Detect Date:

10/19/2016

Updated:

01/22/2024

Description

Multiple serious vulnerabilities have been found in Oracle VM VirtualBox. Malicious users can exploit these vulnerabilities to cause denial of service, affect integrity or obtain sensitive information. These vulnerabilities can be executed remotely and related to Core, OpenSSL and VRDE.

Original advisories

Oracle bulletin

CVE list

CVE-2016-5605
high
CVE-2016-5501
high
CVE-2016-5610
warning
CVE-2016-5538
high
CVE-2016-5608
warning
CVE-2016-5611
warning
CVE-2016-5613
warning
CVE-2016-6304
critical

Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com

Found an inaccuracy in the description of this vulnerability? Let us know!

Kaspersky ID:

KLA10888

Detect Date:

10/19/2016

Updated:

01/22/2024

Severity

critical

Solution

Update to the latest version
Oracle VM VirtualBox download page

Impacts

OSI

Obtain sensitive information. Exploitation of vulnerabilities with this impact can lead to capturing by abuser information, critical for user or system.

DoS

Denial of service. Exploitation of vulnerabilities with this impact can lead to loss of system availability or critical functional fault.

Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.

LoI

Loss of integrity. Exploitation of vulnerabilities with this impact can lead to partial system fault or system components connection disruption.

Affected products

Oracle VM VirtualBox versions earlier than 5.0.28
Oracle VM VirtualBox 5.1 versions earlier than 5.1.8

Kaspersky Next

Let’s go Next: redefine your business’s cybersecurity

Learn more

New Kaspersky!

Your digital life deserves complete protection!

Learn more

Confirm changes?

Your message has been sent successfully.

Multiple vulnerabilities in Oracle VM VirtualBox

Description

Original advisories

Related products

CVE list

Read more