ELASTRA’s products are designed for portability across compute clouds and currently provide support for the Amazon EC2 and S3 compute and storage environments. Because Eucalyptus exposes its virtual machines through an EC2-compatible API, ELASTRA’s portability to Eucalyptus was a straightforward addition to its platform offering.
“The Eucalyptus team has combined several useful open source technologies, including Mule, VDE, and libvirt, into a compelling service layer,” said Stuart Charlton, chief software architect, ELASTRA. “Work still remains to incorporate richer networking, storage and security capabilities, but we look forward to contributing further to building an open cloud ecosystem.”
Eucaplyptus (Elastic Utility Computing Architecture for Linking Your Programs To Useful Systems) is an open-source software infrastructure for implementing “cloud computing” on clusters. The current interface to EUCALYPTUS is compatible with Amazon’s EC2 interface, but the infrastructure is designed to support multiple client-side interfaces. Eucalyptus is implemented using commonly available Linux tools and basic Web-service technologies.
vulnerable software: VMware Workstation 6.0 for Windows, possible some other VMware products as well type of vulnerability: DoS, potential privilege escalation I found a vulnerability in VMware Workstation 6.0 which allows an unprivileged user in the host OS to crash the system and potentially run arbitrary code with kernel privileges. The issue is in the vmstor-60 driver, which is supposed to mount VMware images within the host OS. When sending the IOCTL code FsSetVoleInformation with subcode FsSetFileInformation with a large buffer and underreporting its size to at max 1024 bytes, it will underrun and potentially execute arbitrary code. Security focus
Comments
Post a Comment