CVE-2008-3431

2008-08-05T19:41:00
ID CVE-2008-3431
Type cve
Reporter cve@mitre.org
Modified 2018-10-11T20:48:00

Description

The VBoxDrvNtDeviceControl function in VBoxDrv.sys in Sun xVM VirtualBox before 1.6.4 uses the METHOD_NEITHER communication method for IOCTLs and does not properly validate a buffer associated with the Irp object, which allows local users to gain privileges by opening the \.\VBoxDrv device and calling DeviceIoControl to send a crafted kernel address.