CVE-2008-3431
| CVE Published | 2008-08-05 |
|---|---|
| Related Vendor(s) | sun, oracle |
| Related Product(s) | xvm_virtualbox, virtualbox |
| Exploitation Reported (CISA KEV) | 2022-03-03 |
| CVSS 3 Base Score | 8.8 (HIGH) |
| CVSS 3 Attack Complexity | LOW |
| CVSS 3 Attack Vector | LOCAL |
The VBoxDrvNtDeviceControl function in VBoxDrv.sys in Sun xVM VirtualBox before 1.6.4 uses the METHOD_NEITHER communication method for IOCTLs and does not properly validate a buffer associated with the Irp object, which allows local users to gain privileges by opening the \.\VBoxDrv device and calling DeviceIoControl to send a crafted kernel address.
Cyber Threat Graph Context
Explore how this CVE relates to the wider threat graph