Detections
Analytics

Oracle VM VirtualBox < 3.2.20 / 4.0.22 / 4.1.30 / 4.2.22 / 4.3.6 Local Vulnerability

low Nessus Plugin ID 72008

Language:

Synopsis

The remote host has an application that is affected by an unspecified, local security vulnerability.

Description

The remote host contains a version of Oracle VM VirtualBox prior to 3.2.20 / 4.0.22 / 4.1.30 / 4.2.22 / 4.3.6. It is, therefore, potentially affected by an unspecified, local security vulnerability related to a flaw in the 'Core' subcomponent.

Solution

Upgrade to Oracle VM VirtualBox to 3.2.20 / 4.0.22 / 4.1.30 / 4.2.22 / 4.3.6 or later.

See Also

https://www.securityfocus.com/archive/1/530945/30/0/threaded

http://www.nessus.org/u?17c46362

Plugin Details

Severity: Low

ID: 72008

File Name: virtualbox_4_3_6.nasl

Version: 1.7

Type: local

Agent: windows

Family: Windows

Published: 1/17/2014

Updated: 11/15/2018

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.3

CVSS v2

Risk Factor: Low

Base Score: 3.5

Temporal Score: 2.6

Vector: CVSS2#AV:L/AC:H/Au:S/C:P/I:P/A:P

Vulnerability Information

CPE: cpe:/a:oracle:vm_virtualbox

Required KB Items: VirtualBox/Version

Exploit Ease: No known exploits are available

Patch Publication Date: 1/14/2014

Vulnerability Publication Date: 1/14/2014

Reference Information

CVE: CVE-2013-5892

BID: 64909