ZDI-21-453: Oracle VirtualBox VRDP Heap-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Oracle VirtualBox. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of drdynvc packets. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a heap-based buffer. An attacker can leverage this vulnerability to execute code in the context of the RDP service.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Oracle VM VirtualBox |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of ZDI-21-453?
ZDI-21-453 is rated as critical due to its ability to allow remote code execution without authentication.
How do I fix ZDI-21-453?
To fix ZDI-21-453, users should update Oracle VirtualBox to the latest patched version released by Oracle.
What products are affected by ZDI-21-453?
ZDI-21-453 affects Oracle VirtualBox installations.
Can ZDI-21-453 be exploited remotely?
Yes, ZDI-21-453 can be exploited remotely by attackers without the need for authentication.
What type of vulnerability is ZDI-21-453?
ZDI-21-453 is a remote code execution vulnerability related to the handling of drdynvc packets.
- agent/references
- agent/type
- agent/softwarecombine
- agent/title
- agent/severity
- agent/description
- agent/source
- agent/tags
- collector/zdi-advisory
- source/ZDI
- alias/ZDI-21-453
- alias/ZDI-CAN-12407
- alias/CVE-2021-2279
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/event
- vendor/oracle
- canonical/oracle vm virtualbox