CVE-2009-0876

Name of the Vulnerable Software and Affected Versions Sun xVM VirtualBox versions 2.0.0 through 2.1.4

Description The issue allows local users to gain privileges via a hardlink attack, which preserves setuid/setgid bits on Linux, related to DT RPATH:$ORIGIN.

Recommendations For versions 2.0.0 through 2.1.4, consider restricting access to the setuid/setgid bits to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.