CVE-2013-3792

Oracle VM VirtualBox < 4.2.18 - Denial of Service in Core

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2013-3792. PoCs published by Thomas Dreibholz.

AI-analyzed exploit summary The provided text describes a local denial-of-service vulnerability in Oracle VM VirtualBox 4.2.12, where attackers can disrupt the host system's network. The included command 'tracepath 8.8.8.8' is a placeholder and not a functional exploit.

Description

Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox prior to 3.2.18, 4.0.20, 4.1.28, and 4.2.18 allows local users to affect availability via unknown vectors related to Core.

Exploits (1)

exploitdb WRITEUP VERIFIED
by Thomas Dreibholz · textdosmultiple
https://www.exploit-db.com/exploits/38595

The provided text describes a local denial-of-service vulnerability in Oracle VM VirtualBox 4.2.12, where attackers can disrupt the host system's network. The included command 'tracepath 8.8.8.8' is a placeholder and not a functional exploit.

Classification
Writeup 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Theoretical
Target: Oracle VM VirtualBox 4.2.12
No auth needed
Prerequisites: Local access to the host system running VirtualBox
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1
Core References

Scores

EPSS 0.0057
EPSS Percentile 42.9%

Details

Status published
Products (50)
oracle/vm_virtualbox 4.2.0
oracle/vm_virtualbox 4.2.2
oracle/vm_virtualbox 4.2.4
oracle/vm_virtualbox 4.2.6
oracle/vm_virtualbox 4.2.8
oracle/vm_virtualbox 4.2.10
oracle/vm_virtualbox 4.2.12
oracle/vm_virtualbox 4.2.14
oracle/vm_virtualbox 3.0
oracle/vm_virtualbox 3.0.0
... and 40 more
Published Oct 16, 2013
Tracked Since Feb 18, 2026