Detections
Analytics

Oracle VM VirtualBox < 4.1.34 / 4.2.26 / 4.3.14 WDDM DoS (October 2014 CPU)

low Nessus Plugin ID 78549

Language:

Synopsis

The remote host has an application that is affected by denial of service vulnerability.

Description

The remote host contains a version of Oracle VM VirtualBox that is prior to 4.1.34, 4.2.x prior to 4.2.26, or 4.3.x prior to 4.3.14. It is, therefore, affected by a denial of service vulnerability in the Windows guests graphic driver (WDDM).

Solution

Upgrade Oracle VM VirtualBox to 4.1.34 / 4.2.26 / 4.3.14 or later as referenced in the October 2014 Oracle Critical Patch Update advisory.

See Also

http://www.nessus.org/u?1ada40cc

https://www.virtualbox.org/wiki/Changelog

Plugin Details

Severity: Low

ID: 78549

File Name: virtualbox_oct_2014_cpu.nasl

Version: 1.3

Type: local

Agent: windows

Family: Windows

Published: 10/17/2014

Updated: 11/15/2018

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.4

CVSS v2

Risk Factor: Low

Base Score: 1.9

Temporal Score: 1.4

Vector: CVSS2#AV:L/AC:M/Au:N/C:N/I:N/A:P

Vulnerability Information

CPE: cpe:/a:oracle:vm_virtualbox

Required KB Items: installed_sw/Oracle VM VirtualBox

Exploit Ease: No known exploits are available

Patch Publication Date: 7/15/2014

Vulnerability Publication Date: 10/14/2014

Reference Information

CVE: CVE-2014-6540

BID: 70493