CVE-2008-5256

CVE-2008-5256 · MEDIUM Severity

AV:L/AC:M/AU:N/C:P/I:P/A:P

The AcquireDaemonLock function in ipcdUnix.cpp in Sun Innotek VirtualBox before 2.0.6 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/.vbox-$USER-ipc/lock temporary file.

Learn more about our User Device Pen Test.