KLA10954
Remote Security Vulnerability in Oracle VM VirtualBox
Обновлено: 17/06/2019
Дата обнаружения
16/06/2016
Уровень угрозы
High
Описание

A remote security vulnerability was found in Oracle Virtualization (Oracle VM VirtualBox component). By exploiting this vulnerability malicious users can gain privileges and cause a partial denial of service. This vulnerability can be exploited remotely over the HTTP protocol.


Technical details

Exploiting this vulnerability successfully requires user interaction (with not the same person as the unauthenticated attacker).

This vulnerability occurs in subcomponent GUI of Oracle Virtualization.

Пораженные продукты

Oracle VM VirtualBox earlier than 5.0.32
Oracle VM VirtualBox 5.1.x earlier than 5.1.14

Решение

Update to latest versions
Download Oracle VM VirtualBox

Первичный источник обнаружения
Oracle Critical Patch Update Advisory
Оказываемое влияние
?
DoS 
[?]

PE 
[?]
Связанные продукты
Oracle VirtualBox
CVE-IDS