KLA10963 Multiple vulnerabilities in Oracle VM VirtualBox

Detect date:

01/27/2017

Severity:

High

Description:

Multiple serious vulnerabilities have been found in Oracle VM VirtualBox. Malicious users can exploit these vulnerabilities to cause a denial of service, gain priveleges, obtain sensitive information.

Affected products:

Oracle VM VirtualBox earlier than 5.0.32
Oracle VM VirtualBox 5.1.x earlier than 5.1.14

Solution:

Update to latest versions
Download Oracle VM VirtualBox

Original advisories:

Oracle Critical Patch Update Advisory

Impacts:

OSI

Related products:

Oracle VirtualBox

CVE-IDS:

CVE-2017-33166.0High
CVE-2017-32903.2Warning
CVE-2017-33323.6Warning

Exploitation:

Public exploits exist for this vulnerability.