CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6965 matches found

OpenVAS•added 2009/01/20 12:0 a.m.•20 views

Mandrake Security Advisory MDVSA-2009:011 (virtualbox)

The remote host is missing an update to virtualbox announced via advisory MDVSA-2009:011. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...

4.4CVSS7.5AI score0.00351EPSS

Exploits1References1

securityvulns•added 2009/01/18 12:0 a.m.•30 views

[ MDVSA-2009:011 ] virtualbox

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2009:011 http://www.mandriva.com/security/ Package : virtualbox Date : January 14, 2009 Affected: 2008.0, 2008.1, 2009.0 Problem Description: A vulnerability have been discovered and corrected in VirtualBox,...

4.4CVSS7.4AI score0.00351EPSS

Exploits1

securityvulns•added 2009/01/18 12:0 a.m.•22 views

VirtualBox symbolic links vulnerability

Insecure temporary files creation...

4.4CVSS1.3AI score0.00351EPSS

Exploits1References1Affected Software1

OpenVAS•added 2008/12/10 12:0 a.m.•13 views

Sun xVM VirtualBox Insecure Temporary Files Vulnerability (Linux)

This host is installed with Sun xVM VirtualBox and is prone to Insecure Temporary Files vulnerability. OpenVAS Vulnerability Test $Id: secpodvirtualboxacquiredaemonlockvulnlin900408.nasl 7823 2017-11-20 08:54:04Z cfischer $ Description: Sun xVM VirtualBox Insecure Temporary Files Vulnerability...

4.4CVSS7.5AI score0.00351EPSS

Exploits1References2

OpenVAS•added 2008/12/10 12:0 a.m.•16 views

Sun xVM VirtualBox Insecure Temporary Files Vulnerability (Windows)

This host is installed with Sun xVM VirtualBox and is prone to Insecure Temporary Files vulnerability. OpenVAS Vulnerability Test $Id: secpodvirtualboxacquiredaemonlockvulnwin900407.nasl 7293 2017-09-27 08:49:48Z cfischer $ Description: Sun xVM VirtualBox Insecure Temporary Files Vulnerability...

4.4CVSS7.5AI score0.00351EPSS

Exploits1References1

OpenVAS•added 2008/12/10 12:0 a.m.•11 views

Sun xVM VirtualBox < 2.0.6 Insecure Temporary Files Vulnerability - Linux

Sun xVM VirtualBox is prone to an SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:sun:xvmvirtualbox"; ifdescription...

4.4CVSS6.3AI score0.00351EPSS

Exploits1References2

OpenVAS•added 2008/12/10 12:0 a.m.•198 views

Sun xVM VirtualBox < 2.0.6 Insecure Temporary Files Vulnerability - Windows

4.4CVSS6.3AI score0.00351EPSS

Exploits1References2

seebug.org•added 2008/11/30 12:0 a.m.•30 views

VirtualBox ipcdUnix.cpp创建不安全临时文件漏洞

BUGTRAQ ID: 32444 CVECAN ID: CVE-2008-5256 VirtualBox是由德国Innotek公司开发的开源虚拟化技术，目前已成为Sun xVM产品家族的成员。 VirtualBox的AcquireDaemonLock函数以不安全地方式使用临时文件，本地攻击者可以通过创建/tmp/.vbox-$USER-ipc/lock符号链接覆盖启动virtualbox用户所拥有的任意文件。开启然后退出virtualbox就足以触发这个漏洞，无需启动任何虚拟机。 Sun xVM VirtualBox 2.0.4 Sun ---...

4.4CVSS6.4AI score0.00351EPSS

Exploits1

UbuntuCve•added 2008/11/27 12:30 a.m.•13 views

CVE-2008-5256

The AcquireDaemonLock function in ipcdUnix.cpp in Sun Innotek VirtualBox before 2.0.6 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/.vbox-$USER-ipc/lock temporary file...

4.4CVSS6AI score0.00351EPSS

Exploits1References1

Prion•added 2008/11/27 12:30 a.m.•9 views

Design/Logic Flaw

4.4CVSS6.3AI score0.00351EPSS

Exploits1References11Affected Software1

NVD•added 2008/11/27 12:30 a.m.•6 views

CVE-2008-5256

4.4CVSS6AI score0.00351EPSS

Exploits1References11

Cvelist•added 2008/11/27 12:0 a.m.•13 views

CVE-2008-5256

7.2AI score0.00351EPSS

Exploits1References11

CVE•added 2008/11/27 12:0 a.m.•42 views

CVE-2008-5256

The CVE-2008-5256 entry concerns VirtualBox prior to 2.0.6. The vulnerability resides in AcquireDaemonLock (ipcdUnix.cpp) and enables local users to overwrite arbitrary files via a symlink attack on a /tmp/.vbox-$USER-ipc/lock temporary file. CVSSv2 base score is 4.4 (Medium) with Local access, N...

4.4CVSS7.2AI score0.00351EPSS

Exploits1References11Affected Software1

Debian•added 2008/11/13 9:16 a.m.•23 views

[Backports-security-announce] Security Update for virtualbox-ose

Michael Meskes uploaded new packages for virtualbox-ose which fixed the following security problem: Debian Bug 504149 Symlink vulnerability due to bad /tmp handling allowing an attacker to overwrite any files owned by the starting user of virtualbox. For the etch-backports distribution the proble...

3.9AI score

Exploits0

Debian•added 2008/11/13 9:16 a.m.•10 views

[Backports-security-announce] Security Update for virtualbox-ose

5.8AI score

Exploits0

seebug.org•added 2008/08/11 12:0 a.m.•85 views

Sun xVM VirtualBox < 1.6.4 Privilege Escalation Vulnerability PoC

No description provided by source. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Sun xVM VirtualBox Privilege Escalation Vulnerability Advisory Information Title: Sun xVM VirtualBox Privilege Escalation...

7.2CVSS7.6AI score0.06932EPSS

Exploits8

securityvulns•added 2008/08/07 12:0 a.m.•61 views

CORE-2008-0716 - Sun xVM VirtualBox Privilege Escalation Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Sun xVM VirtualBox Privilege Escalation Vulnerability Advisory Information Title: Sun xVM VirtualBox Privilege Escalation Vulnerability Advisory ID: CORE-2008-0716...

7.2CVSS0.5AI score0.06932EPSS

Exploits8

seebug.org•added 2008/08/06 12:0 a.m.•118 views

Sun xVM VirtualBox 'VBoxDrv.sys'本地特权提升漏洞

BUGTRAQ ID: 30481 CVE ID:CVE-2008-3431 CNCVE ID：CNCVE-20083431 Sun xVM VirtualBox是一款功能强大的虚拟机程序。 Sun xVM VirtualBox存在设计错误，本地攻击者可以利用漏洞提升特权。当处理部分IOCTLs时VBoxDrv.sys驱动中存在错误，可导致在受影响宿主上以内核进程权限执行任意指令。...

7.2CVSS7.4AI score0.06932EPSS

Exploits8

Prion•added 2008/08/05 7:41 p.m.•25 views

Design/Logic Flaw

The VBoxDrvNtDeviceControl function in VBoxDrv.sys in Sun xVM VirtualBox before 1.6.4 uses the METHODNEITHER communication method for IOCTLs and does not properly validate a buffer associated with the Irp object, which allows local users to gain privileges by opening the \.\VBoxDrv device and...

7.2CVSS6.7AI score0.06932EPSS

Exploits8References11Affected Software1

UbuntuCve•added 2008/08/05 7:41 p.m.•55 views

CVE-2008-3431

8.8CVSS6.9AI score0.06932EPSS

Exploits8References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by