CVE-2014-2489

Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 3.2.24, 4.0.26, 4.1.34, 4.2.26, and 4.3.12 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Core...

CVE-2014-2488

Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 3.2.24, 4.0.26, 4.1.34, 4.2.26, and 4.3.12 allows local users to affect confidentiality via unknown vectors related to Core...

CVE-2014-2477

CVE-2014-2477 targets Oracle VirtualBox (before 3.2.24, 4.0.26, 4.1.34, 4.2.26, 4.3.12). It is described as an unspecified local vulnerability in the VirtualBox Core, with unknown vectors. Connected sources indicate a VBoxGuest.sys Privilege Escalation via the Guest Additions driver (e.g., exploi...

CVE-2014-2477

Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 3.2.24, 4.0.26, 4.1.34, 4.2.26, and 4.3.12 allows local users to affect integrity and availability via unknown vectors related to Core, a different vulnerability than CVE-2014-2486...

CVE-2014-2487

Technical details (affected versions, root cause, exploit vectors, and specific impact) for CVE-2014-2487 are not publicly provided in the supplied documents. Monitor for updates from NVD/OSV/Oracle/VBox advisories.

CVE-2014-4228

CVE-2014-4228 affects Oracle VM VirtualBox prior to 4.1.34, 4.2.26, and 4.3.12. The vulnerability stems from the Graphics driver (WDDM) for Windows guests, allowing local users to impact confidentiality, integrity, and availability (partial impacts) via local vectors without authentication. The O...

CVE-2014-2477

Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 3.2.24, 4.0.26, 4.1.34, 4.2.26, and 4.3.12 allows local users to affect integrity and availability via unknown vectors related to Core, a different vulnerability than CVE-2014-2486...

KLA10284 Multiple vulnerabilities in Oracle VirtualBox

Unspecified vulnerabilities were found in Oracle VirtualBox. By exploiting this vulnerability malicious users can affect integrity, availability and confidentiality. This vulnerability can be exploited remotely via unknown vectors. Original advisories - Exploitation Public exploits exist for this...

Oracle VM VirtualBox < 3.2.24 / 4.0.26 / 4.1.34 / 4.2.26 / 4.3.14 Multiple Unspecified Vulnerabilities

The remote host contains a version of Oracle VM VirtualBox that is prior to 3.2.24, 4.0.26, 4.1.34, 4.2.26 or 4.3.14. It is, therefore, affected by the following vulnerabilities : - An unspecified flaw relating to the Core subcomponent that may allow a local attacker to gain elevated privileges...

Oracle VirtualBox Guest Additions Arbitrary Write Privilege Escalation

Title: Oracle VirtualBox Guest Additions Arbitrary Write Privilege Escalation Advisory ID: KL-001-2014-001 Publication Date: 07.15.2014 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2014-001.txt 1. Vulnerability Details Affected Vendor: Oracle Affected Product: VirtualBox...

Oracle VirtualBox Guest Additions Arbitrary Write Privilege Escalation

Vulnerability Details Affected Vendor: Oracle Affected Product: VirtualBox Guest Additions Affected Versions: 4.3.8 - 4.3.10 Platform: Microsoft XP SP3 CWE Classification: CWE-123: Write-what-where Condition Impact: Arbitrary code execution Attack vector: IOCTL CVE ID: CVE-2014-2477 2...

M.J.M. Quick Player 1.2 - Stack BOF

No description provided by source. Vulnerability : M.J.M. Quick Player v1.2 Stack BOF Discovered by : mrme seeleymagicathotmaildotcom Sploit written by : corelanc0d3r corelanc0d3ratgmaildotcom Sploit released : dec 28th, 2009 Type : local and remote code execution OS : Windows Product : M.J.M...

Xion Player 1.0.125 Stack Buffer Overflow Exploit

No description provided by source. !/usr/bin/python Title: Xion 1.0.125 Stack Buffer Overflow Date: August 13, 2010 Author: corelanc0d3r and dijital1 Grtz to dijital1 : I had a lot of fun working with you on this one ! : Grtz to dookie2000ca : Original Advisory:...

TweakFS 1.0 (FSX Edition) Stack buffer overflow

No description provided by source. Exploit Title : TweakFS 1.0 FSX Edition CVE : CVE-2010-1458 Corelan : http://www.corelan.be:8800/advisories.php?id=CORELAN-10-026 Date : April 7th, 2010 Author : corelanc0d3r Bug found by : TecR0c Software Link : http://tweakfs.com/ Version : 1.0 OS : Windows...

Concrete5 5.6.2.1 (index.php, cID param) - SQL Injection

No description provided by source. Exploit Title: Concrete5 sql injection Date: 18/02/2014 Exploit Author: [email protected] Vendor Homepage: https://www.concrete5.org/ Software Link: http://www.concrete5.org/downloadfile/-/view/58379/8497/ Version: 5.6.2.1 stable Tested on: Virtualbox debian UR...

Nokia Multimedia Player 1.0 SEH Unicode Exploit

No description provided by source. ? Exploit Title: Nokia Multimedia player SEH Unicode Date: January 11 2011 Author: Carlos Mario Penagos Hollmann Software Link: http://www.brothersoft.com/nokia-multimedia-player-download-46238.html Version: 1.00.55.5010 Tested on: Windows xp sp3 running on VMwa...

Quick Player 1.2 - Unicode Buffer Overflow Exploit

No description provided by source. !/usr/bin/python Vulnerability : Quick Player v1.2 unicode buffer overflow exploit coded by : mrme reference : http://www.exploit-db.com/exploits/10759 corelanc0d3r Tested on : XP SP3 En VirtualBox Greetz to : Corelan Security...

Joomla 3.2.1 - SQL Injection Vulnerability

No description provided by source. Exploit Title: Joomla 3.2.1 sql injection Date: 05/02/2014 Exploit Author: [email protected] Vendor Homepage: http://www.joomla.org/ Software Link: http://joomlacode.org/gf/download/frsrelease/19007/134333/Joomla3.2.1-Stable-FullPackage.zip Version: 3.2.1 default...

CoreFTP 2.1 b1637 - (password field) Universal BOF Exploit

No description provided by source. !/usr/bin/python Vulnerability : CoreFTP v2.1 b1637 password field Universal BOF exploit Found by : mrme seeleymagic at hotmail dot com Coded by : mrme & corelanc0d3r Download from : http://www.coreftp.com/download.html Tested on : XP SP3 En VirtualBox Greetz to...

Sun xVM VirtualBox 2.0/2.1 Local Privilege Escalation Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/34080/info Sun xVM VirtualBox is prone to a local privilege-escalation vulnerability. An attacker can exploit this vulnerability to run arbitrary code with superuser privileges. The following versions for the Linux platfo...