Network Security: Detailed info on RE: VMWare poor guest isolation design

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Bugtraq

[Top] [All Lists]

RE: VMWare poor guest isolation design

from [Arthur Corliss] Network Security

[Permanent Link]

Subject:	RE: VMWare poor guest isolation design
Date:	Mon, 27 Aug 2007 22:22:08 -0800 (AKDT)

On Sat, 25 Aug 2007, Ken Kousky wrote:

I'm trying to understand how the vm actually prevents the buffer overflow
from injecting code that has direct hardware control? It seems that the code
injected into memory should be truly "arbitrary code" based on the physical
machine.


First off, you need to understand what a buffer overflow is -- in most cases
it's not an attack on the hardware, it's an attack on the process.  Which is
usually running in its own protected address space.

In short, vms don't alleviate or protect you from buffer overflows (crap
code is still crap inside of a guest), but running a service in a dedicated
vm versus on a host with other concurrent services reduces the information
leakage should the service be subverted.  That's all.

        --Arthur Corliss
          Live Free or Die

[More messages with this same subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: More on VMWare poor guest isolation design, (continued) Re: More on VMWare poor guest isolation design, Tim Newsham RE: More on VMWare poor guest isolation design, M. Burnett RE: More on VMWare poor guest isolation design, Tim Newsham RE: More on VMWare poor guest isolation design, Arthur Corliss Re: More on VMWare poor guest isolation design, Wietse Venema Re: VMWare poor guest isolation design, Matt Richard Re: VMWare poor guest isolation design, Arthur Corliss RE: VMWare poor guest isolation design, Ken Kousky RE: VMWare poor guest isolation design, Arthur Corliss RE: VMWare poor guest isolation design, Ken Kousky RE: VMWare poor guest isolation design, Arthur Corliss <= Re: VMWare poor guest isolation design, Tim Newsham VMware poor guest isolation design, VMware Security team

Previous by Date:	Re: n.runs, Sophos, German laws, and customer safety, alan
Next by Date:	[Full-disclosure] Cisco CSS WebNS ssh crash, NetExpress
Previous by Thread:	RE: VMWare poor guest isolation design, Ken Kousky
Next by Thread:	Re: VMWare poor guest isolation design, Tim Newsham
Indexes:	[Date] [Thread] [Top] [All Lists]