VirtualBox < 4.3-4.3.28 Venom Vulnerability

high Log Correlation Engine Plugin ID 801944

Synopsis

The VirtualBox server is vulnerable to the Venom remote code execution attack.

Description

The remote host is running a version of VirtualBox which is vulnerable to an out-of-bounds memory access flaw, which can cause a crash or execution of arbitrary code on the host.

Solution

Upgrade to VirtualBox 4.3-4.3.28.

See Also

http://www.oracle.com/technetwork/topics/security/alert-cve-2015-3456-2542656.html#PatchTable

Plugin Details

Severity: High

ID: 801944

Family: Generic

Nessus ID: 83444, 83445, 83482, 83483, 83484

Reference Information

CVE: CVE-2015-3456