Detections
Analytics
FreeBSD : qemu, xen and VirtualBox OSE -- possible VM escape and code execution ('VENOM') (2780e442-fc59-11e4-b18b-6805ca1d3bb1) (Venom)
high Nessus Plugin ID 83510
Language:
Synopsis
The remote FreeBSD host is missing one or more security-related updates.Description
Jason Geffner, CrowdStrike Senior Security Researcher reports :VENOM, CVE-2015-3456, is a security vulnerability in the virtual floppy drive code used by many computer virtualization platforms. This vulnerability may allow an attacker to escape from the confines of an affected virtual machine (VM) guest and potentially obtain code-execution access to the host. Absent mitigation, this VM escape could open access to the host system and all other VMs running on that host, potentially giving adversaries significant elevated access to the host's local network and adjacent systems.
Solution
Update the affected packages.See Also
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=200255
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=200256
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=200257
http://www.nessus.org/u?2bd5df81
Plugin Details
Severity: High
ID: 83510
File Name: freebsd_pkg_2780e442fc5911e4b18b6805ca1d3bb1.nasl
Version: 2.15
Type: local
Family: FreeBSD Local Security Checks
Published: 5/18/2015
Updated: 9/28/2023
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: High
Score: 7.4
CVSS v2
Risk Factor: High
Base Score: 7.7
Vector: CVSS2#AV:A/AC:L/Au:S/C:C/I:C/A:C
Vulnerability Information
CPE: p-cpe:/a:freebsd:freebsd:qemu, p-cpe:/a:freebsd:freebsd:qemu-devel, p-cpe:/a:freebsd:freebsd:qemu-sbruno, p-cpe:/a:freebsd:freebsd:virtualbox-ose, p-cpe:/a:freebsd:freebsd:xen-tools, cpe:/o:freebsd:freebsd
Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 5/17/2015
Vulnerability Publication Date: 4/29/2015
Exploitable With
Core Impact
Reference Information
CVE: CVE-2015-3456
IAVA: 2015-A-0115-S