CVE-2014-0981
Oracle VM VirtualBox - 3D Acceleration Multiple Vulnerabilities
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
4Exploited in Wild
-Decision
Descriptions
VBox/GuestHost/OpenGL/util/net.c in Oracle VirtualBox before 3.2.22, 4.0.x before 4.0.24, 4.1.x before 4.1.32, 4.2.x before 4.2.24, and 4.3.x before 4.3.8, when using 3D Acceleration allows local guest OS users to execute arbitrary code on the Chromium server via crafted Chromium network pointer in a (1) CR_MESSAGE_READBACK or (2) CR_MESSAGE_WRITEBACK message to the VBoxSharedCrOpenGL service, which triggers an arbitrary pointer dereference and memory corruption. NOTE: this issue was MERGED with CVE-2014-0982 because it is the same type of vulnerability affecting the same set of versions. All CVE users should reference CVE-2014-0981 instead of CVE-2014-0982.
Se presenta una vulnerabilidad en el archivo VBox/GuestHost/OpenGL/util/net.c en Oracle VirtualBox versiones anteriores a 3.2.22, versiones 4.0.x anteriores a 4.0.24, versiones 4.1.x anteriores a 4.1.32, versiones 4.2.x anteriores a 4.2.24 y versiones 4.3.x anteriores a 4.3. 8, cuando se usa la aceleración 3D, los usuarios del OS invitado local pueden ejecutar un código arbitrario en el servidor Chromium por medio de un puntero de red Chromium diseñado en un mensaje (1) CR_MESSAGE_READBACK o (2) CR_MESSAGE_WRITEBACK hacia el servicio VBoxSharedCrOpenGL, lo que desencadena una desreferencia de puntero arbitraria y la corrupción de la memoria . NOTA: este problema fue FUSIONADO con el CVE-2014-0982 porque es el mismo tipo de vulnerabilidad afectando al mismo conjunto de versiones. Todos los usuarios de CVE deben hacer referencia a CVE-2014-0981 en lugar de CVE-2014-0982.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2014-01-07 CVE Reserved
- 2014-03-11 CVE Published
- 2014-03-12 First Exploit
- 2024-07-01 EPSS Updated
- 2024-08-06 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-399: Resource Management Errors
CAPEC
References (10)
| URL | Tag | Source |
|---|---|---|
| http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html | X_refsource_confirm |
|
| http://www.securityfocus.com/archive/1/531418/100/0/threaded | Mailing List | |
| https://www.virtualbox.org/changeset/50437/vbox | X_refsource_confirm |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/advisories/57384 | 2018-10-09 | |
| http://www.debian.org/security/2014/dsa-2904 | 2018-10-09 | |
| https://security.gentoo.org/glsa/201612-27 | 2018-10-09 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Oracle Search vendor "Oracle" | Vm Virtualbox Search vendor "Oracle" for product "Vm Virtualbox" | 4.2.0 Search vendor "Oracle" for product "Vm Virtualbox" and version "4.2.0" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Vm Virtualbox Search vendor "Oracle" for product "Vm Virtualbox" | 4.2.2 Search vendor "Oracle" for product "Vm Virtualbox" and version "4.2.2" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Vm Virtualbox Search vendor "Oracle" for product "Vm Virtualbox" | 4.2.4 Search vendor "Oracle" for product "Vm Virtualbox" and version "4.2.4" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Vm Virtualbox Search vendor "Oracle" for product "Vm Virtualbox" | 4.2.6 Search vendor "Oracle" for product "Vm Virtualbox" and version "4.2.6" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Vm Virtualbox Search vendor "Oracle" for product "Vm Virtualbox" | 4.2.8 Search vendor "Oracle" for product "Vm Virtualbox" and version "4.2.8" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Vm Virtualbox Search vendor "Oracle" for product "Vm Virtualbox" | 4.2.10 Search vendor "Oracle" for product "Vm Virtualbox" and version "4.2.10" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Vm Virtualbox Search vendor "Oracle" for product "Vm Virtualbox" | 4.2.12 Search vendor "Oracle" for product "Vm Virtualbox" and version "4.2.12" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Vm Virtualbox Search vendor "Oracle" for product "Vm Virtualbox" | 4.2.14 Search vendor "Oracle" for product "Vm Virtualbox" and version "4.2.14" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Vm Virtualbox Search vendor "Oracle" for product "Vm Virtualbox" | 4.2.16 Search vendor "Oracle" for product "Vm Virtualbox" and version "4.2.16" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Vm Virtualbox Search vendor "Oracle" for product "Vm Virtualbox" | 4.2.18 Search vendor "Oracle" for product "Vm Virtualbox" and version "4.2.18" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Vm Virtualbox Search vendor "Oracle" for product "Vm Virtualbox" | 4.2.20 Search vendor "Oracle" for product "Vm Virtualbox" and version "4.2.20" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Vm Virtualbox Search vendor "Oracle" for product "Vm Virtualbox" | 4.3.0 Search vendor "Oracle" for product "Vm Virtualbox" and version "4.3.0" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Vm Virtualbox Search vendor "Oracle" for product "Vm Virtualbox" | 4.3.2 Search vendor "Oracle" for product "Vm Virtualbox" and version "4.3.2" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Vm Virtualbox Search vendor "Oracle" for product "Vm Virtualbox" | 4.3.4 Search vendor "Oracle" for product "Vm Virtualbox" and version "4.3.4" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Vm Virtualbox Search vendor "Oracle" for product "Vm Virtualbox" | 4.3.6 Search vendor "Oracle" for product "Vm Virtualbox" and version "4.3.6" | - |
Affected
| ||||||