Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2009-0876

CWE-595 documents5 sources
Severity
6.9MEDIUM
EPSS
0.3%
top 43.33%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
SUN XVM Virtualbox
Timeline
PublishedMar 12
Latest updateMay 2

Description

Sun xVM VirtualBox 2.0.0, 2.0.2, 2.0.4, 2.0.6r39760, 2.1.0, 2.1.2, and 2.1.4r42893 on Linux allows local users to gain privileges via a hardlink attack, which preserves setuid/setgid bits on Linux, related to DT_RPATH:$ORIGIN.

CVSS vector

AV:L/AC:M/C:C/I:C/A:CExploitability: 3.4 | Impact: 10.0

Affected Packages1 packages

NVDsun/xvm_virtualbox7 versions+6

Patches

Patch: sunsolve.sun.comPatch: www.virtualbox.orgPatch: www.vupen.com

🔴Vulnerability Details

2
GHSA
GHSA-hhjm-w4mx-fgwh: Sun xVM VirtualBox 22022-05-02
CVEList
CVE-2009-0876: Sun xVM VirtualBox 22009-03-12

💥Exploits & PoCs

1
Exploit-DB
Sun xVM VirtualBox 2.0/2.1 - Local Privilege Escalation2009-03-10

📄Research Papers

1
CTF
pwn / zapping_setuid_22023
CVE-2009-0876 (MEDIUM CVSS 6.9) | Sun xVM VirtualBox 2.0.0 | cvebase.io