On 6/2/15, Mirimir <mirimir@riseup.net> wrote:
... That's also the case for VirtualBox. So just get admin rights to install the drivers, and then give them up again.
this detail - separating admin rights for virtual devices from the run-time user rights of an executing virtual machine becomes quite important when guest escapes happen. e.g. http://xenbits.xen.org/xsa/advisory-135.html ''' ... a 24-byte overflow allows the guest to take control of the phys_mem_write function pointer in the PCNetState_st structure, and this is called when trying to flush the updated transmit frame descriptor back to the guest. By specifying the content of the second transmit frame, the attacker therefore gets reliable fully-chosen control of the host instruction pointer, allowing them to take control of the host. ''' fun times :) best regards,