VMs without Administrator rights [was: Threat model: Parents]
coderman
coderman at gmail.com
Wed Jun 10 09:47:07 PDT 2015
On 6/2/15, Mirimir <mirimir at riseup.net> wrote:
> ...
> That's also the case for VirtualBox. So just get admin rights to install
> the drivers, and then give them up again.
this detail - separating admin rights for virtual devices from the
run-time user rights of an executing virtual machine becomes quite
important when guest escapes happen.
e.g. http://xenbits.xen.org/xsa/advisory-135.html
'''
... a 24-byte overflow allows the guest to take control of the
phys_mem_write function pointer in the PCNetState_st structure, and
this is called when trying to flush the updated transmit frame
descriptor back to the guest. By specifying the content of the second
transmit frame, the attacker therefore gets reliable fully-chosen
control of the host instruction pointer, allowing them to take control
of the host.
'''
fun times :)
best regards,
More information about the cypherpunks
mailing list