SUSE CVE-2017-3576

Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. Supported versions that are affected are Prior to 5.0.38 and Prior to 5.1.20. Easily "exploitable" vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM...

Mageia: Security Advisory (MGASA-2017-0135)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE: Security Advisory for virtualbox (openSUSE-SU-2017:1142-1)

The remote host is missing an update for the Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Oracle VirtualBox Multiple Unspecified Vulnerabilities - 01 (Apr 2017) - Linux

Oracle VirtualBox is prone to multiple unspecified vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Oracle VirtualBox Multiple Unspecified Vulnerabilities - 01 (Apr 2017) - Windows

Oracle VirtualBox is prone to multiple unspecified vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2017-3576

Summary : CVE-2017-3576 affects the Oracle VM VirtualBox core subcomponent. Affected software: Oracle VM VirtualBox core (Virtualization platform) with vulnerable ranges prior to 5.0.38 and prior to 5.1.20. Root cause/impact : Easily exploitable vulnerability that allows a low-privileged user wit...

CVE-2017-3576

creationtimestamp| type| source ---|---|--- 2017-04-20 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/41907...

VirtualBox: unprivileged host user -> host kernel privesc via ALSA config（ CVE-2017-3576）

This is another way to escalate from an unprivileged userspace process into the VirtualBox process, which has an open file descriptor to the privileged device /dev/vboxdrv and can use that to compromise the host kernel. The issue is that, for VMs with ALSA audio, the privileged VM host process...

VirtualBox Unprivilege Host User To Host Kernel Privilege Escalation

VirtualBox: unprivileged host user - host kernel privesc via ALSA config CVE-2017-3576 This is another way to escalate from an unprivileged userspace process into the VirtualBox process, which has an open file descriptor to the privileged device /dev/vboxdrv and can use that to compromise the hos...

VirtualBox Unprivilege Host User To Host Kernel Privilege Escalation Exploit

Exploit for linux platform in category local exploits VirtualBox: unprivileged host user - host kernel privesc via ALSA config CVE-2017-3576 This is another way to escalate from an unprivileged userspace process into the VirtualBox process, which has an open file descriptor to the privileged devi...