[VIM] Oracle VM VirtualBox Local Denial of Service Vulnerability

George A. Theall theall at tenable.com
Fri Oct 26 19:35:58 CDT 2012


On Oct 26, 2012, at 8:32 PM, security curmudgeon <jericho at attrition.org> wrote:

> 
> On Fri, 26 Oct 2012, George A. Theall wrote:
> 
> : BID 56045 concerns a local DoS vulnerability in VirtualBox 3.2, 4.0, and 
> : 4.1. It references Oracle's CPU for October 2012 / CVE-2012-3221.
> : 
> : I believe this is a duplicate of BID 5547 since that references a blog 
> : post at 
> : http://www.halfdog.net/Security/2012/VirtualBoxSoftwareInterrupt0x8GuestCrash/ 
> : which was updated 10 days ago and now references Oracle's CPU and the 
> : same CVE.
> 
> BID 55471 it appears (figure a typo =)

Indeed, sorry about that.

Note that there are two corresponding OSVDB entries as well -- 85356 and 86384.

George
-- 
theall at tenable.com






More information about the VIM mailing list