Oracle Virtualbox Multiple Vulnerabilities Feb15 (Mac OS X) Network Vulnerability

Summary

The host is installed with Oracle VM virtualBox and is prone to multiple vulnerabilities.

Impact

Successful exploitation will allow local attackers to cause a DoS (Denial of Service) and disclose potentially sensitive information. Impact Level: Application

Solution

Upgrade to Oracle VirtualBox version 4.3.20 or later. For updates refer to https://www.virtualbox.org

Insight

Multiple flaws exists due to multiple unspecified errors.

Affected

VirtualBox versions 4.3.x before 4.3.20 on Mac OS X.

Detection

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

References

http://osvdb.org/117338
http://osvdb.org/117339
http://osvdb.org/117343
http://secunia.com/advisories/62524
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html
http://www.scip.ch/en/?vuldb.68800

Updated on 2017-03-28

Severity

Classification

CVE CVE-2014-6588, CVE-2014-6589, CVE-2014-6590, CVE-2014-6595, CVE-2015-0427
CVSS Base Score: 3.2
AV:L/AC:L/Au:S/C:N/I:P/A:P

Related Vulnerabilities

CCProxy Version Detection
Get the DNS Name over WMI
Compaq WBEM Server Detection
CPE-based Policy Check
ICMP domain name request

Take action and discover your vulnerabilities