Lucene search

Ubuntu.comUB:CVE-2013-0420

HistoryJan 17, 2013 - 12:00 a.m.

CVE-2013-0420

2013-01-1700:00:00

ubuntu.com

2.4 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:H/Au:S/C:N/I:P/A:P

0.007 Low

EPSS

Percentile

80.8%

JSON

Unspecified vulnerability in the VirtualBox component in Oracle
Virtualization 4.0, 4.1, and 4.2 allows local users to affect integrity and
availability via unknown vectors related to Core. NOTE: The previous
information was obtained from the January 2013 Oracle CPU. Oracle has not
commented on claims from another vendor that this issue is related to an
incorrect comparison in the vga_draw_text function in
Devices/Graphics/DevVGA.cpp, which can cause VirtualBox to “draw more lines
than necessary.”

Bugs

OSVersionArchitecturePackageVersionFilename
ubuntu12.04noarchvirtualbox< 4.1.12-dfsg-2ubuntu0.6UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	12.04	noarch	virtualbox	< 4.1.12-dfsg-2ubuntu0.6	UNKNOWN

References

www.oracle.com/technetwork/topics/security/cpujan2013-1515902.html

launchpad.net/bugs/cve/CVE-2013-0420

nvd.nist.gov/vuln/detail/CVE-2013-0420

security-tracker.debian.org/tracker/CVE-2013-0420

www.cve.org/CVERecord?id=CVE-2013-0420

2.4 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:H/Au:S/C:N/I:P/A:P

0.007 Low

EPSS

Percentile

80.8%

JSON

Related for UB:CVE-2013-0420