Thomas Biege of SUSE discovered multiple vulnerabilities:
- A shell metacharacter injection in popen() (CVE-2009-3692) and a possible buffer overflow in strncpy() in the VBoxNetAdpCtl configuration tool.
- An unspecified vulnerability in VirtualBox Guest Additions (CVE-2009-3940)…