Vulnerability CVE-2017-10129: Information

Description

Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). The supported version that is affected is Prior to 5.1.24. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.0 Base Score 8.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H).

Severity: HIGH (8.8) Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

URL: https://nvd.nist.gov/vuln/detail/CVE-2017-10129
Published: Aug. 8, 2017
Modified: Oct. 3, 2019

Fixed packages

Package name
Branch
Fixed in version
Version from repository
Errata ID
Task #
State
kernel-modules-virtualbox-addition-std-defsisyphus5.1.24-alt1.264486.17.0.18-alt2.393566.1ALT-PU-2017-1918-1185668Fixed
kernel-modules-virtualbox-addition-std-defp105.1.24-alt1.264486.17.0.18-alt2.330458.1ALT-PU-2017-1918-1185668Fixed
kernel-modules-virtualbox-addition-std-defp95.1.24-alt1.264486.16.1.26-alt1.328981.1ALT-PU-2017-1918-1185668Fixed
kernel-modules-virtualbox-addition-std-defp85.1.24-alt1.263245.0.M80P.15.2.42-alt1.264785.0.M80P.1ALT-PU-2017-1948-1185945Fixed
kernel-modules-virtualbox-addition-std-defc9f25.1.24-alt1.264486.16.1.46-alt1.330454.0.c9f.2ALT-PU-2017-1918-1185668Fixed
kernel-modules-virtualbox-addition-std-defp115.1.24-alt1.264486.17.0.18-alt2.393563.1ALT-PU-2017-1918-1185668Fixed
kernel-modules-virtualbox-addition-un-defp85.1.24-alt1.264486.0.M80P.15.2.42-alt1.267318.0.M80P.1ALT-PU-2017-1949-1185945Fixed
kernel-modules-virtualbox-addition-un-defc75.1.24-alt1.263241.0.M70C.25.1.24-alt1.264725.0.M70C.1ALT-PU-2017-1938-1185673Fixed
kernel-modules-virtualbox-std-defsisyphus5.1.24-alt1.264486.17.0.18-alt2.393566.1ALT-PU-2017-1917-1185668Fixed
kernel-modules-virtualbox-std-defp105.1.24-alt1.264486.17.0.18-alt2.330458.1ALT-PU-2017-1917-1185668Fixed
kernel-modules-virtualbox-std-defp95.1.24-alt1.264486.16.1.26-alt1.328981.1ALT-PU-2017-1917-1185668Fixed
kernel-modules-virtualbox-std-defp85.1.24-alt1.263245.0.M80P.15.2.42-alt1.264785.0.M80P.1ALT-PU-2017-1951-1185945Fixed
kernel-modules-virtualbox-std-defc9f25.1.24-alt1.264486.16.1.46-alt1.330454.0.c9f.2ALT-PU-2017-1917-1185668Fixed
kernel-modules-virtualbox-std-defp115.1.24-alt1.264486.17.0.18-alt2.393563.1ALT-PU-2017-1917-1185668Fixed
kernel-modules-virtualbox-un-defp85.1.24-alt1.264486.0.M80P.15.2.42-alt1.267318.0.M80P.1ALT-PU-2017-1950-1185945Fixed
kernel-modules-virtualbox-un-defc75.1.24-alt1.263241.0.M70C.25.1.24-alt1.264725.0.M70C.1ALT-PU-2017-1940-1185673Fixed
virtualboxsisyphus5.1.24-alt1.S17.0.18-alt2ALT-PU-2017-1916-1185668Fixed
virtualboxp105.1.24-alt1.S17.0.18-alt2ALT-PU-2017-1916-1185668Fixed
virtualboxp95.1.24-alt1.S16.1.26-alt1ALT-PU-2017-1916-1185668Fixed
virtualboxp85.1.24-alt0.M80P.15.2.42-alt2ALT-PU-2017-1947-1185945Fixed
virtualboxc10f15.1.24-alt1.S16.1.46-alt1ALT-PU-2017-1916-1185668Fixed
virtualboxc9f25.1.24-alt1.S16.1.46-alt1ALT-PU-2017-1916-1185668Fixed
virtualboxc75.1.24-alt1.M70C.15.1.24-alt1.M70C.1ALT-PU-2017-1936-1185673Fixed
virtualboxp115.1.24-alt1.S17.0.18-alt2ALT-PU-2017-1916-1185668Fixed

References to Advisories, Solutions, and Tools

Hyperlink
Resource
http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
  • Patch
  • Vendor Advisory
1038929
  • Third Party Advisory
  • VDB Entry
99638
  • Third Party Advisory
  • VDB Entry
42426
  • Third Party Advisory
  • VDB Entry

    1. Configuration 1

      cpe:2.3:a:oracle:vm_virtualbox:*:*:*:*:*:*:*:*
      End including
      5.1.22
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Version: v24.5.3
Back to top