CVE-2008-3431
The VBoxDrvNtDeviceControl function in VBoxDrv.sys in Sun xVM VirtualBox before 1.6.4 uses the METHOD_NEITHER communication method for IOCTLs and...
Basic Information
- CVE State
- PUBLISHED
- Reserved Date
- July 31, 2008
- Published Date
- August 05, 2008
- Last Updated
- February 10, 2025
- Vendor
- n/a
- Product
- n/a
- Description
- The VBoxDrvNtDeviceControl function in VBoxDrv.sys in Sun xVM VirtualBox before 1.6.4 uses the METHOD_NEITHER communication method for IOCTLs and does not properly validate a buffer associated with the Irp object, which allows local users to gain privileges by opening the \\.\VBoxDrv device and calling DeviceIoControl to send a crafted kernel address.
CVSS Scores
SSVC Information
- Exploitation
- active
- Technical Impact
- total
Exploit Status
- Exploited in the Wild
- Yes (added 2022-03-03 00:00:00 UTC) Source
References
http://www.securityfocus.com/bid/30481
http://securityreason.com/securityalert/4107
https://www.exploit-db.com/exploits/6218
http://sunsolve.sun.com/search/document.do?assetkey=1-66-240095-1
http://secunia.com/advisories/31361
http://www.coresecurity.com/content/virtualbox-privilege-escalation-vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/44202
http://www.vupen.com/english/advisories/2008/2293
http://virtualbox.org/wiki/Changelog
http://securitytracker.com/id?1020625
http://www.securityfocus.com/archive/1/495095/100/0/threaded
Known Exploited Vulnerability Information
| Source | Added Date |
|---|---|
| CISA | 2022-03-03 00:00:00 UTC |