KLA10630Multiple vulnerabilities in Oracle VM VirtualBox

2015-07-14T00:00:00
ID KLA10630
Type kaspersky
Reporter Kaspersky Lab
Modified 2018-07-05T00:00:00

Description

CVSS:

8.5

Detect date:

07/14/2015

Severity:

Critical

Description:

An unspecified vulnerabilities were found in Oracle VM VirtualBox. By exploiting these vulnerabilities malicious users can affect integrity, cause denial of service and obtain sensitive information. These vulnerabilities can be exploited locally via an unknown vectors.

Affected products:

Oracle VM VirtualBox 4.0 versions earlier than 4.0.32
Oracle VM VirtualBox 4.1 versions earlier than 4.1.40
Oracle VM VirtualBox 4.2 versions earlier than 4.2.32
Oracle VM VirtualBox 4.3 versions earlier than 4.3.30

Solution:

Update to the latest version
Get VirtualBox

Original advisories:

Oracle bulletin

Impacts:

OSI

Related products:

Oracle VirtualBox

CVE-IDS:

CVE-2015-4727
CVE-2015-2594
CVE-2015-2581
CVE-2014-8102
CVE-2010-1324
CVE-2014-0227
CVE-2015-0255
CVE-2014-0230
CVE-2015-1803
CVE-2015-0286
CVE-2014-3571