Denial of Service Vulnerability in Sun xVM VirtualBox
CVE-2009-3940

Currently unrated

Key Information:

Vendor: Oracle
Status: Virtualbox; Xvm Virtualbox
Vendor: CVE Published:; 16 November 2009

Summary

A vulnerability exists in the Guest Additions component of Sun xVM VirtualBox, specifically affecting versions 1.6.x, 2.0.x (prior to 2.0.12), 2.1.x, 2.2.x, and Sun VirtualBox before 3.0.10. This flaw allows guest operating system users to exploit unknown vectors, potentially leading to excessive memory consumption and a resultant denial of service. This can disrupt the normal operation of the guest OS, impacting system availability.

References

http://sunsolve.sun.com/search/document.do?assetkey=1-66-...

vendor-advisoryx_refsource_SUNALERT

http://lists.opensuse.org/opensuse-security-announce/2010...

vendor-advisoryx_refsource_SUSE

http://secunia.com/advisories/38420

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Nov 16, 2009
Vulnerability Reserved
Nov 16, 2009