Dismiss this notice
Ashampoo Photo Optimizer 7 New Year 2019 Giveaway-https://www.geeks.fyi/showthread.php?tid=4948

Dismiss this notice
MakeUSLaugh_HitmanPro.Alert New Year 2019 Giveaway- https://www.geeks.fyi/showthread.php?tid=4946

Dismiss this notice
Ashampoo Burning Studio 20 New Year 2019 Giveaway- https://www.geeks.fyi/showthread.php?tid=4947

Dismiss this notice
PowerISO New Year 2019 Giveaway - https://www.geeks.fyi/showthread.php?tid=5170


Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
VirtualBox zero-day published by disgruntled researcher
#1
Quote:A Russian security researcher has published details about a zero-day vulnerability affecting VirtualBox, an Oracle software application for running virtual machines.

According to a text file uploaded on GitHub, Saint Petersburg-based researcher Sergey Zelenyuk has found a chain of bugs that can allow malicious code to escape the VirtualBox virtual machine (the guest OS) and execute on the underlying (host) operating system.

Once out of the VirtualBox VM, the malicious code runs in the OS' limited userspace (kernel ring 3), but Zelenyuk said that attackers can use many of the already known privilege escalation bugs to gain kernel-level access (ring 0).

"The exploit is 100% reliable," Zelenyuk said. "It means it either works always or never because of mismatched binaries or other, more subtle reasons I didn't account."

The Russian researcher says the zero-day affects all current VirtualBox releases, works regardless of the host or guest operating system the user is running, and is reliable against the default configuration of newly created VMs.

Source: https://www.zdnet.com/article/virtualbox...esearcher/
[-] The following 2 users say Thank You to silversurfer for this post:
  • harlan4096, mekelek
Reply
#2
after the whole vulnerable driver fiasco someone would have to be really brave not to switch over to VMWare tbh.
[-] The following 2 users say Thank You to mekelek for this post:
  • harlan4096, silversurfer
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Latest Threads
WhatsApp caps message forwarding to five...
Last Post: silversurfer
Today 11:56
» Replies: 0
» Views: 19
What is your PC's security setup?
Last Post: Toligo
Today 10:42
» Replies: 24
» Views: 2181
Fake Android Navigation Apps Spam You wi...
Last Post: tarekma7
Today 10:27
» Replies: 0
» Views: 21
6 Reasons We Need to Boost Cybersecurity...
Last Post: tarekma7
Today 10:22
» Replies: 0
» Views: 28
Apeaksoft MobieTrans 1.1.6
Last Post: Toligo
Today 08:48
» Replies: 0
» Views: 18
[Android][App] The Big Ashampoo® App Par...
Last Post: Raur
Today 08:19
» Replies: 0
» Views: 28
A first look at Windows Sandbox
Last Post: Raur
Today 07:47
» Replies: 2
» Views: 87
Twitter admits bug exposed some Android ...
Last Post: Raur
Today 07:35
» Replies: 3
» Views: 47
What is your favourite AntiVirus?
Last Post: osmandemi
Today 07:24
» Replies: 13
» Views: 232
Temporary micropatch available for zero-...
Last Post: Raur
Today 07:16
» Replies: 0
» Views: 36
Malwarebytes Fixes Windows 7 Freeze Prob...
Last Post: Raur
Today 07:08
» Replies: 2
» Views: 33
NordVPN Breaking Your Privacy
Last Post: Raur
Today 06:45
» Replies: 0
» Views: 29
Nvidia GTX 1660 Ti Reportedly Up To 19 P...
Last Post: DTinn8
Today 05:58
» Replies: 0
» Views: 17
Microsoft Employee Hints at Windows Core...
Last Post: DTinn8
Today 05:54
» Replies: 0
» Views: 28
Free VPN Risk Index: Android Apps
Last Post: DTinn8
Today 05:49
» Replies: 1
» Views: 28
O&O DiskImage Professional v14 Review
Last Post: DTinn8
Today 05:44
» Replies: 7
» Views: 238
Revo Uninstaller 3 PRO
Last Post: Raur
Today 05:29
» Replies: 3
» Views: 50
[Official] O&O DiskImage 14 Professional...
Last Post: DTinn8
Today 05:27
» Replies: 24
» Views: 1395
WinRAR 5.60 Review
Last Post: Raur
Today 05:14
» Replies: 5
» Views: 479
[Official] CheckMAL's AppCheck Pro Chris...
Last Post: dinosaur07
Today 00:03
» Replies: 12
» Views: 751

[-]
Staffs Online
harlan4096's profile harlan4096
Administrator