Get the Whitepaper.Virtualization refers to an experience that retains the characteristics of a physical or logical resource, without being tied to it directly. For example, the “C:” drive on your computer may represent just a portion of the physical disk on which it resides.
This concept can be applied to many networked IT components, to minimize expenses and provide flexibility in the implementation and scalability of resources
vulnerable software: VMware Workstation 6.0 for Windows, possible some other VMware products as well type of vulnerability: DoS, potential privilege escalation I found a vulnerability in VMware Workstation 6.0 which allows an unprivileged user in the host OS to crash the system and potentially run arbitrary code with kernel privileges. The issue is in the vmstor-60 driver, which is supposed to mount VMware images within the host OS. When sending the IOCTL code FsSetVoleInformation with subcode FsSetFileInformation with a large buffer and underreporting its size to at max 1024 bytes, it will underrun and potentially execute arbitrary code. Security focus
Comments
Post a Comment