CVE-2009-3692

CVE-2009-3692 affects Sun VirtualBox 3.0.x before 3.0.8 on Solaris x86, Linux, and macOS, with a vulnerability in the VBoxNetAdpCtl configuration tool that enables local privilege escalation. Gentoo GLSA notes a shell metacharacter injection in popen() (and a possible buffer overflow in strncpy()...

CVE-2009-3940

CVE-2009-3940 affects Sun xVM VirtualBox Guest Additions in VirtualBox 1.6.x and 2.0.x (before 2.0.12), 2.1.x, 2.2.x, and Sun VirtualBox before 3.0.10. A guest OS user can cause a denial of service (memory consumption) on the guest via unknown vectors. Connected advisories confirm the issue acros...

CVE-2009-2714

CVE-2009-2714 affects Sun xVM VirtualBox 3.0.0 and 3.0.2 (per multiple sources). The vulnerability enables a guest OS user to cause a denial-of-service on the host, potentially rebooting the host, via unknown vectors (NVD/SUSE entries). A Nessus plugin specifics that VirtualBox

CVE-2009-2715

Sun VirtualBox versions 2.2–3.0.2 r49928 are affected by CVE-2009-2715, where a guest OS user can cause a denial of service resulting in a host Linux reboot by executing the sysenter instruction. The vulnerability is described as a local issue (attack vector: local) with impact: availability (com...

CVE-2009-3923

The CVE-2009-3923 entry concerns VirtualBox 2.0.8/2.0.10 web service within Sun Virtual Desktop Infrastructure (VDI) 3.0 that does not require authentication. This allows remote attackers to obtain unspecified access through Apache HTTP Server–related request vectors. Relevant data from the conne...