CVSS: 2.1EPSS: 0%CPEs: 23EXPL: 0CVE-2009-3940
https://notcve.org/view.php?id=CVE-2009-3940
Unspecified vulnerability in Guest Additions in Sun xVM VirtualBox 1.6.x and 2.0.x before 2.0.12, 2.1.x, and 2.2.x, and Sun VirtualBox before 3.0.10, allows guest OS users to cause a denial of service (memory consumption) on the guest OS via unknown vectors. Vulnerabilidad no especificada en Guest Additions en Sun xVM VirtualBox v1.6.x y v2.0.x anteriores a v2.0.12, v2.1.x, y v2.2.x, y en Sun VirtualBox versiones anteriores a v3.0.10, permite a usuarios del sistema operativo huésped provocar una denegación de servicio (consumo de memoria) en el sistema operativo huésped mediante vectores desconocidos. • http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00000.html http://secunia.com/advisories/38420 http://sunsolve.sun.com/search/document.do?assetkey=1-66-271149-1 •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2009-3923
https://notcve.org/view.php?id=CVE-2009-3923
The VirtualBox 2.0.8 and 2.0.10 web service in Sun Virtual Desktop Infrastructure (VDI) 3.0 does not require authentication, which allows remote attackers to obtain unspecified access via vectors involving requests to an Apache HTTP Server. El servicio Web de VirtualBox v2.0.8 y v2.0.10 en Sun Virtual Desktop Infrastructure (VDI) v3.0 no requiere autenticación, lo que permite a atacantes remotos conseguir acceso no especificado a través de vectores que implican peticiones al servidor Apache HTTP Server. • http://sunsolve.sun.com/search/document.do?assetkey=1-21-141481-03-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-268328-1 http://www.securityfocus.com/bid/36917 https://exchange.xforce.ibmcloud.com/vulnerabilities/54136 • CWE-287: Improper Authentication •
CVSS: 7.2EPSS: 0%CPEs: 8EXPL: 1CVE-2009-3692 – Sun VirtualBox 3.0.6 - Local Privilege Escalation
https://notcve.org/view.php?id=CVE-2009-3692
Unspecified vulnerability in the VBoxNetAdpCtl configuration tool in Sun VirtualBox 3.0.x before 3.0.8 on Solaris x86, Linux, and Mac OS X allows local users to gain privileges via unknown vectors. Vulnerabilidad no especificada en la herramienta de configuración VBoxNetAdpCtl en Sun VirtualBox v3.0.x anterior v3.0.8 en Solaris x86, Linux, y Mac OS X permite a usuarios locales obtener privilegios a través de vectores desconocidos. • https://www.exploit-db.com/exploits/9973 http://secunia.com/advisories/36929 http://securitytracker.com/id?1022990 http://sunsolve.sun.com/search/document.do?assetkey=1-66-268188-1 http://www.osvdb.org/58652 http://www.securityfocus.com/bid/36604 http://www.virtualbox.org/wiki/Changelog http://www.vupen.com/english/advisories/2009/2845 https://exchange.xforce.ibmcloud.com/vulnerabilities/53671 •
CVSS: 4.9EPSS: 0%CPEs: 2EXPL: 2CVE-2009-2715 – Sun xVM VirtualBox 2.2 < 3.0.2 r49928 - Local Host Reboot (Denial of Service) (PoC)
https://notcve.org/view.php?id=CVE-2009-2715
Sun VirtualBox 2.2 through 3.0.2 r49928 allows guest OS users to cause a denial of service (Linux host OS reboot) via a sysenter instruction. Sun VirtualBox v2.2 hasta v3.0.2 r49928 permite a los usuarios del SO (sistema operativo) huésped causar una denegación de servicio (reinicio del SO Linux anfitrión) a través de una instrucción sysenter. • https://www.exploit-db.com/exploits/9323 http://www.exploit-db.com/exploits/9323 http://www.securityfocus.com/bid/35915 https://exchange.xforce.ibmcloud.com/vulnerabilities/52211 • CWE-20: Improper Input Validation •
CVSS: 4.9EPSS: 0%CPEs: 2EXPL: 0CVE-2009-2714
https://notcve.org/view.php?id=CVE-2009-2714
Unspecified vulnerability in Sun VirtualBox 3.0.0 and 3.0.2 allows guest OS users to cause a denial of service (host OS reboot) via unknown vectors. Vulnerabilidad no especificada en Sun VirtualBox v3.0.0 y v3.0.2 permite a los usuarios del SO (sistema operativo) huésped provocar una denegación de servicio (reinicio del SO anfitrión) a través de vectores desconocidos. • http://secunia.com/advisories/36080 http://sunsolve.sun.com/search/document.do?assetkey=1-66-265268-1 http://www.securityfocus.com/bid/35960 http://www.vupen.com/english/advisories/2009/2173 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16725 •