|
|
CVE Reference: CVE-2008-3431 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2008-3431 |
|
|
Description: The VBoxDrvNtDeviceControl function in VBoxDrv.sys in Sun xVM VirtualBox before 1.6.4 uses the METHOD_NEITHER communication method for IOCTLs and does not properly validate a buffer associated with the Irp object, which allows local users to gain privileges by opening the \\.\VBoxDrv device and calling DeviceIoControl to send a crafted kernel address. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/44202 SUNALERT http://sunsolve.sun.com/search/document.do?assetkey=1-66-240095-1 ST 1020625 SREASON http://securityreason.com/securityalert/4107 SAID Secunia Advisory: SA31361 MISC http://www.coresecurity.com/content/virtualbox-privilege-escalation-vulnerability MILW0RM http://www.milw0rm.com/exploits/6218 CONFIRM http://virtualbox.org/wiki/Changelog BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/495095/100/0/threaded BID 30481 |
|
| Return to the previous page. |
