Дата обнаружения
|
18/07/2017 |
Уровень угрозы
|
Warning |
Описание
|
Multiple serious vulnerabilities have been found in Oracle VM VirtualBox. Malicious users can exploit these vulnerabilities to to cause a denial of service, read and write accesible data and possibly to obtain sensitive information. Below is a complete list of vulnerabilities:
Technical details Vulnerabilities (1)-(3) can be exploited by a low privileged user with logon to the infrastructure where OracleVM VirtualBox is executed. Vulnerabilities (4)-(6) can be exploited by a high privileged user with logon to the infrastructure where OracleVM VirtualBox is executed. NB: These vulnerabilities do not have any public CVSS rating so rating can be changed by the time. NB: At this moment Oracle has just reserved CVE numbers for these vulnerabilities. Information can be changed soon. |
Пораженные продукты
|
Oracle VM VirtualBox 5.1.x earlier than 5.1.24 |
Решение
|
Update to the latest versions |
Первичный источник обнаружения
|
Oracle Critical Patch Update Advisory |
Оказываемое влияние
?
|
OSI
[?]
DoS
[?]
WLF
[?]
RLF
[?]
|
Связанные продукты
|
Oracle VirtualBox |
CVE-IDS
|
CVE-2017-102044.6Warning
CVE-2017-101294.6Warning CVE-2017-102104.6Warning CVE-2017-102333.6Warning CVE-2017-102364.6Warning CVE-2017-102374.6Warning CVE-2017-102384.6Warning CVE-2017-102394.6Warning CVE-2017-102404.6Warning CVE-2017-102414.6Warning CVE-2017-102424.6Warning CVE-2017-102353.6Warning CVE-2017-102093.6Warning CVE-2017-101873.6Warning |
Эксплуатация
|
The following public exploits exists for this vulnerability: |
Узнай статистику распространения уязвимостей в твоем регионе |