Sun xVM VirtualBox < 3.0.4 Multiple Local Denial of Service Vulnerabilities
Medium Nessus Plugin ID 40549
SynopsisThe remote Windows host has an application that is affected by local denial of service vulnerabilities.
DescriptionThe remote host contains a version of Sun xVM VirtualBox, an open source virtualization platform, before 3.0.4. Such versions have multiple local denial of service vulnerabilities. A guest virtual machine (VM) can reboot the host machine by executing the 'sysenter' instruction. The vendor states there are several other denial of service vulnerabilities in addition to this.
An attacker with access to the guest VM could leverage these to cause a denial of service.
SolutionUpgrade to Sun xVM VirtualBox 3.0.4 or later.