Oracle VM VirtualBox Core Subcomponent < 4.0.18 / 4.1.24 / 4.2.6 Local Issue

low Nessus Plugin ID 63646

Synopsis

The remote Windows host has an application that is affected by a local vulnerability.

Description

The remote host contains a version of Oracle VM VirtualBox earlier than 4.0.18 / 4.1.24 / 4.2.6. As such, it is potentially affected by a local vulnerability that could allow an authenticated attacker to impact integrity and availability.

Solution

Upgrade to Oracle VM VirtualBox 4.0.18 / 4.1.24 / 4.2.6 or later.

See Also

https://www.virtualbox.org/wiki/Changelog

http://www.nessus.org/u?aac4d874

Plugin Details

Severity: Low

ID: 63646

File Name: virtualbox_core_subcomponent_local_issue.nasl

Version: 1.5

Type: local

Agent: windows

Family: Windows

Published: 1/22/2013

Updated: 8/6/2018

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.0

CVSS v2

Risk Factor: Low

Base Score: 2.4

Temporal Score: 1.8

Vector: CVSS2#AV:L/AC:H/Au:S/C:N/I:P/A:P

Vulnerability Information

CPE: cpe:/a:oracle:vm_virtualbox

Required KB Items: VirtualBox/Version

Exploit Ease: No known exploits are available

Patch Publication Date: 1/15/2013

Vulnerability Publication Date: 1/15/2013

Reference Information

CVE: CVE-2013-0420

BID: 57383