Published: 17/07/2014 Updated: 09/10/2018

CVSS v2 Base Score: 3.6 | Impact Score: 4.9 | Exploitability Score: 3.9

VMScore: 365

Vector: AV:L/AC:L/Au:N/C:N/I:P/A:P

Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox prior to 3.2.24, 4.0.26, 4.1.34, 4.2.26, and 4.3.12 allows local users to affect integrity and availability via unknown vectors related to Core, a different vulnerability than CVE-2014-2486.

Vulnerable Product	Search on Vulmon	Subscribe to Product
oracle vm virtualbox 4.0.16
oracle vm virtualbox 4.0.18
oracle vm virtualbox 4.0.0
oracle vm virtualbox 4.0.10
oracle vm virtualbox 4.0.22
oracle vm virtualbox 4.0.4
oracle vm virtualbox 4.0.12
oracle vm virtualbox 4.0.14
oracle vm virtualbox 4.0.6
oracle vm virtualbox 4.0.8
oracle vm virtualbox
oracle vm virtualbox 4.0
oracle vm virtualbox 4.0.2
oracle vm virtualbox 4.0.20
oracle vm virtualbox 4.3.8
oracle vm virtualbox 4.3.4
oracle vm virtualbox 4.3.6
oracle vm virtualbox 4.3.0
oracle vm virtualbox 4.3.2
oracle vm virtualbox 3.2
oracle vm virtualbox 3.2.0
oracle vm virtualbox 3.2.20
oracle vm virtualbox 3.2.4
oracle vm virtualbox 3.2.14
oracle vm virtualbox 3.2.16
oracle vm virtualbox 3.2.18
oracle vm virtualbox 3.2.2
oracle vm virtualbox 3.2.10
oracle vm virtualbox 3.2.12
oracle vm virtualbox 3.2.6
oracle vm virtualbox 3.2.8
oracle vm virtualbox 4.1.14
oracle vm virtualbox 4.1.16
oracle vm virtualbox 4.1.30
oracle vm virtualbox 4.1.0
oracle vm virtualbox 4.1.22
oracle vm virtualbox 4.1.24
oracle vm virtualbox 4.1.8
oracle vm virtualbox 4.1.10
oracle vm virtualbox 4.1.12
oracle vm virtualbox 4.1.26
oracle vm virtualbox 4.1.28
oracle vm virtualbox 4.1.18
oracle vm virtualbox 4.1.2
oracle vm virtualbox 4.1.20
oracle vm virtualbox 4.1.4
oracle vm virtualbox 4.1.6
oracle vm virtualbox 4.2.12
oracle vm virtualbox 4.2.14
oracle vm virtualbox 4.2.4
oracle vm virtualbox 4.2.6
oracle vm virtualbox 4.2.8
oracle vm virtualbox 4.2.2
oracle vm virtualbox 4.2.20
oracle vm virtualbox 4.2.0
oracle vm virtualbox 4.2.10
oracle vm virtualbox 4.2.22
oracle vm virtualbox 4.2.16
oracle vm virtualbox 4.2.18

Debian Bug report logs - #754939 virtualbox: Multiple security issues Package: virtualbox; Maintainer for virtualbox is Debian Virtualbox Team <team+debian-virtualbox@trackerdebianorg>; Source for virtualbox is src:virtualbox (PTS, buildd, popcon) Reported by: Moritz Muehlenhoff <jmm@inutilorg> Date: Wed, 16 Jul 2 ...

## # This module requires Metasploit: http//metasploitcom/download # Current source: githubcom/rapid7/metasploit-framework ## require 'msf/core' require 'msf/core/exploit/local/windows_kernel' require 'rex' class Metasploit3 < Msf::Exploit::Local Rank = AverageRanking include Msf::Exploit::Local::WindowsKernel include Msf::Pos ...

NVD-CWE-noinfo http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html http://www.exploit-db.com/exploits/34333 http://www.vmware.com/security/advisories/VMSA-2014-0012.html http://seclists.org/fulldisclosure/2014/Dec/23 http://www.securityfocus.com/bid/68613 http://www.securityfocus.com/archive/1/534161/100/0/threaded https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=754939 https://nvd.nist.gov https://www.exploit-db.com/exploits/34333/

CVE-2014-2477

Vulnerability Summary

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect