Dismiss this notice
Master PDF Editor Easter 2019 Giveaway - https://www.geeks.fyi/showthread.php?tid=6240

Dismiss this notice
Avast Premier Easter 2019 Giveaway - https://www.geeks.fyi/showthread.php?tid=6095

Dismiss this notice
Ashampoo Snap 10 Easter 2019 Giveaway - https://www.geeks.fyi/showthread.php?tid=6241

Dismiss this notice
Backup4all Professional Easter 2019 Giveaway - https://www.geeks.fyi/showthread.php?tid=6464


Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
VirtualBox zero-day published by disgruntled researcher
#1
Quote:A Russian security researcher has published details about a zero-day vulnerability affecting VirtualBox, an Oracle software application for running virtual machines.

According to a text file uploaded on GitHub, Saint Petersburg-based researcher Sergey Zelenyuk has found a chain of bugs that can allow malicious code to escape the VirtualBox virtual machine (the guest OS) and execute on the underlying (host) operating system.

Once out of the VirtualBox VM, the malicious code runs in the OS' limited userspace (kernel ring 3), but Zelenyuk said that attackers can use many of the already known privilege escalation bugs to gain kernel-level access (ring 0).

"The exploit is 100% reliable," Zelenyuk said. "It means it either works always or never because of mismatched binaries or other, more subtle reasons I didn't account."

The Russian researcher says the zero-day affects all current VirtualBox releases, works regardless of the host or guest operating system the user is running, and is reliable against the default configuration of newly created VMs.

Source: https://www.zdnet.com/article/virtualbox...esearcher/
[-] The following 2 users Like silversurfer's post:
  • harlan4096, mekelek
Reply
#2
after the whole vulnerable driver fiasco someone would have to be really brave not to switch over to VMWare tbh.
[-] The following 2 users Like mekelek's post:
  • harlan4096, silversurfer
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Latest Threads
PC Game Giveaway:Transistor Sci-fi-theme...
Last Post: sinanogz
Today 10:42
» Replies: 0
» Views: 4
Try Out the Reader Mode in Microsoft’s N...
Last Post: silversurfer
Yesterday 14:13
» Replies: 0
» Views: 31
Microsoft Brings a Key Security Feature ...
Last Post: silversurfer
Yesterday 14:13
» Replies: 0
» Views: 30
PC Game Giveaway:Assassins Creed Unity
Last Post: sinanogz
Yesterday 10:57
» Replies: 0
» Views: 27
LibreOffice 6.1.2
Last Post: JM Safe
Yesterday 09:53
» Replies: 5
» Views: 200
WhatsApp Will Allow Users to Block Conve...
Last Post: JM Safe
Yesterday 09:51
» Replies: 1
» Views: 32
Avast Blog_Security News: Facebook wants...
Last Post: harlan4096
Yesterday 07:51
» Replies: 0
» Views: 30
Avast Blog_Tips & Advices: Are budget-tr...
Last Post: harlan4096
Yesterday 07:49
» Replies: 0
» Views: 24
Emsisoft Anti-Malware named one of AVLab...
Last Post: harlan4096
Yesterday 07:41
» Replies: 0
» Views: 52
Next generation antivirus: the future of...
Last Post: harlan4096
Yesterday 07:38
» Replies: 0
» Views: 38
10 Chrome Extensions to Boost Your Onlin...
Last Post: harlan4096
Yesterday 07:31
» Replies: 0
» Views: 26
Microsoft Announces Surface Hub 2S: 50-I...
Last Post: harlan4096
Yesterday 07:26
» Replies: 0
» Views: 21
AMD 50th Anniversary Ryzen CPUs Listed A...
Last Post: harlan4096
Yesterday 07:24
» Replies: 0
» Views: 17
The Huawei P30 & P30 Pro Reviews: Photog...
Last Post: harlan4096
Yesterday 07:22
» Replies: 0
» Views: 28
Samsung Completes Development of 5nm EUV...
Last Post: harlan4096
Yesterday 07:20
» Replies: 0
» Views: 26
TSMC Reveals 6 nm Process Technology: 7 ...
Last Post: harlan4096
Yesterday 07:16
» Replies: 0
» Views: 23
8 ways in which Microsoft Edge (Chromium...
Last Post: harlan4096
Yesterday 07:11
» Replies: 0
» Views: 28
Google to present browser and search cho...
Last Post: harlan4096
Yesterday 07:09
» Replies: 0
» Views: 22
Ubuntu 19.04 is out
Last Post: harlan4096
Yesterday 07:07
» Replies: 0
» Views: 20
Start Menu gets its own process and a pe...
Last Post: harlan4096
Yesterday 07:04
» Replies: 0
» Views: 25

[-]
Staffs Online
There are no staff members currently online.