VYPR

Virtualbox

by Sun Corporation

CVEs (8)

  • CVE-2009-3692Oct 13, 2009
    risk 0.03cvss epss 0.01

    Unspecified vulnerability in the VBoxNetAdpCtl configuration tool in Sun VirtualBox 3.0.x before 3.0.8 on Solaris x86, Linux, and Mac OS X allows local users to gain privileges via unknown vectors.

  • CVE-2009-2715Aug 7, 2009
    risk 0.03cvss epss 0.01

    Sun VirtualBox 2.2 through 3.0.2 r49928 allows guest OS users to cause a denial of service (Linux host OS reboot) via a sysenter instruction.

  • CVE-2009-0876Mar 12, 2009
    risk 0.03cvss epss 0.01

    Sun xVM VirtualBox 2.0.0, 2.0.2, 2.0.4, 2.0.6r39760, 2.1.0, 2.1.2, and 2.1.4r42893 on Linux allows local users to gain privileges via a hardlink attack, which preserves setuid/setgid bits on Linux, related to DT_RPATH:$ORIGIN.

  • CVE-2021-25319May 5, 2021
    risk 0.00cvss epss 0.00

    A Incorrect Default Permissions vulnerability in the packaging of virtualbox of openSUSE Factory allows local attackers in the vboxusers groupu to escalate to root. This issue affects: openSUSE Factory virtualbox version 6.1.20-1.1 and prior versions.

  • CVE-2009-3940Nov 16, 2009
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in Guest Additions in Sun xVM VirtualBox 1.6.x and 2.0.x before 2.0.12, 2.1.x, and 2.2.x, and Sun VirtualBox before 3.0.10, allows guest OS users to cause a denial of service (memory consumption) on the guest OS via unknown vectors.

  • CVE-2009-3923Nov 10, 2009
    risk 0.00cvss epss 0.02

    The VirtualBox 2.0.8 and 2.0.10 web service in Sun Virtual Desktop Infrastructure (VDI) 3.0 does not require authentication, which allows remote attackers to obtain unspecified access via vectors involving requests to an Apache HTTP Server.

  • CVE-2009-2714Aug 7, 2009
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in Sun VirtualBox 3.0.0 and 3.0.2 allows guest OS users to cause a denial of service (host OS reboot) via unknown vectors.

  • CVE-2008-5256Nov 27, 2008
    risk 0.00cvss epss 0.00

    The AcquireDaemonLock function in ipcdUnix.cpp in Sun Innotek VirtualBox before 2.0.6 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/.vbox-$USER-ipc/lock temporary file.