Oracle VM VirtualBox Unspecified Vulnerability - Feb13 (Mac OS X) Network Vulnerability

Summary

This host is installed with Oracle VM VirtualBox and is prone to unspecified vulnerability.

Impact

Successful exploitation allows malicious local users to perform certain actions with escalated privileges. Impact Level: Application

Solution

Apply the patch from below link, http://www.oracle.com/technetwork/topics/security/cpujan2013-1515902.html ***** NOTE: Ignore this warning, if above mentioned workaround is manually applied. *****

Insight

The flaw is due to an unspecified error within the core component and can be exploited to cause a hang and manipulate certain VirtualBox accessible data.

Affected

Oracle VM VirtualBox versions 4.0, 4.1 and 4.2 on Mac OS X

References

http://secunia.com/advisories/51893
http://www.oracle.com/technetwork/topics/security/cpujan2013-1515902.html
http://www.osvdb.org/89249
http://www.scip.ch/en/?vuldb.7413

Updated on 2015-03-25

Severity

Classification

CVE CVE-2013-0420
CVSS Base Score: 2.4
AV:L/AC:H/Au:S/C:N/I:P/A:P

Related Vulnerabilities

IBM DB2 Server Detection (Linux)
Determine OS and list of installed packages via SSH login
IMAP Banner
Detection of Dangerous ActiveX Control
ExpressionEngine CMS Version Detection

Take action and discover your vulnerabilities