Internet threat level: 1
Home→Descriptions→SA51007
Oracle VM VirtualBox Unspecified Denial of Service Vulnerability
| Secunia ID | |
| CVE-ID | |
| Release Date |
17 Oct 2012 |
| Criticality | |
| Solution Status |
Vendor Patch |
| Software |
Oracle VirtualBox 3.x |
| Where | |
| Impact |
DoS (Denial of Service)This includes vulnerabilities ranging from excessive resource consumption (e.g. causing a system to use a lot of memory) to crashing an application or an entire system. |
| Description |
A vulnerability has been reported in Oracle VM VirtualBox, which can be exploited by malicious, local users to cause a Denial of Service (DoS). The vulnerability is caused due to an unspecified error in the VirtualBox Core. No further information is currently available. The vulnerability is reported in version 3.2, 4.0, and 4.1. |
| Solution |
Apply updates (please see the vendor's advisory for details). |
| Reported by |
It is currently unclear who reported the vulnerability as the Oracle Critical Patch Update for October 2012 only provides a bundled list of credits. This section will be updated when/if the original reporters provide more information. |
| Original Advisory |
http://www.oracle.com/technetwork/topics/security/cpuoct2012-1515893.html#AppendixOVIR |
© 1997-2013 Kaspersky Lab ZAO. All Rights Reserved.
Industry-leading Antivirus Software.
Registered trademarks and service marks are the property of their respective owners.
The authors' opinions do not necessarily reflect the official positions of Kaspersky Lab.