← voltar
CVE-2008-3431

CVE-2008-3431

CVSS 8.8 HIGHEPSS 6.9%● KEV
The VBoxDrvNtDeviceControl function in VBoxDrv.sys in Sun xVM VirtualBox before 1.6.4 uses the METHOD_NEITHER communication method for IOCTLs and does not properly validate a buffer associated with the Irp object, which allows local users to gain privileges by opening the \\.\VBoxDrv device and calling DeviceIoControl to send a crafted kernel address.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Produtos afetados
n/a · n/a
PoCs públicas encontradas1
cve_referencewww.exploit-db.com/exploits/6218não verificado
⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://secunia.com/advisories/31361http://securityreason.com/securityalert/4107http://securitytracker.com/id?1020625https://exchange.xforce.ibmcloud.com/vulnerabilities/44202http://sunsolve.sun.com/search/document.do?assetkey=1-66-240095-1https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2008-3431https://www.exploit-db.com/exploits/6218http://virtualbox.org/wiki/Changeloghttp://www.coresecurity.com/content/virtualbox-privilege-escalation-vulnerabilityhttp://www.securityfocus.com/archive/1/495095/100/0/threadedhttp://www.securityfocus.com/bid/30481http://www.vupen.com/english/advisories/2008/2293