ID CVE-2013-3779
Summary Unspecified vulnerability in the Secure Global Desktop component in Oracle Virtualization All 4.6 releases including 4.63 and 4.7 prior to 4.71 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Web UI.
References
Vulnerable Configurations
  • cpe:2.3:a:oracle:vm_virtualbox:4.6
    cpe:2.3:a:oracle:vm_virtualbox:4.6
  • cpe:2.3:a:oracle:vm_virtualbox:4.61
    cpe:2.3:a:oracle:vm_virtualbox:4.61
  • cpe:2.3:a:oracle:vm_virtualbox:4.62
    cpe:2.3:a:oracle:vm_virtualbox:4.62
  • cpe:2.3:a:oracle:vm_virtualbox:4.63
    cpe:2.3:a:oracle:vm_virtualbox:4.63
  • cpe:2.3:a:oracle:vm_virtualbox:4.7
    cpe:2.3:a:oracle:vm_virtualbox:4.7
  • Oracle Virtualization 4.6
    cpe:2.3:a:oracle:virtualization:4.6
  • cpe:2.3:a:oracle:virtualization:4.61
    cpe:2.3:a:oracle:virtualization:4.61
  • cpe:2.3:a:oracle:virtualization:4.62
    cpe:2.3:a:oracle:virtualization:4.62
  • Oracle Virtualization 4.63
    cpe:2.3:a:oracle:virtualization:4.63
  • Oracle Virtualization 4.7
    cpe:2.3:a:oracle:virtualization:4.7
CVSS
Base: 7.5 (as of 17-07-2013 - 12:38)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
refmap via4
bid 61226
confirm http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html
osvdb 95319
sectrack 1028793
secunia 54238
Last major update 22-08-2013 - 02:54
Published 17-07-2013 - 09:41
Back to Top