Losing the operating system has several benefits. Many OS services are already duplicated by Java or the hypervisor, and BEA estimates that cutting the OS can reduce consumption of system resources such as memory and CPU cycles by 25% to 50%. It also simplifies management, as WLS-VE knows it's being virtualized and so can more easily map software processes to the hardware it's running on. Performance can improve, as a complete OS doesn't have to be loaded whenever a virtual machine is started.I have pesonally started a question in the LinkedIn Q&A, feel free to voice your opinions there, and original article is here.
Still, though WLS-VE shipped in July, its Liquid Operations Control management system won't be available until December. Performance claims haven't yet been proved and will depend on using hardware with virtualization support baked in--without it, VMware simply takes the place of the OS.
vulnerable software: VMware Workstation 6.0 for Windows, possible some other VMware products as well type of vulnerability: DoS, potential privilege escalation I found a vulnerability in VMware Workstation 6.0 which allows an unprivileged user in the host OS to crash the system and potentially run arbitrary code with kernel privileges. The issue is in the vmstor-60 driver, which is supposed to mount VMware images within the host OS. When sending the IOCTL code FsSetVoleInformation with subcode FsSetFileInformation with a large buffer and underreporting its size to at max 1024 bytes, it will underrun and potentially execute arbitrary code. Security focus
Comments
Post a Comment