Virtual PC flaw lets hackers bypass DEP, SafeSEH, ASLR

By ilev
in Smart Home, Network & Security

 Share

Recommended Posts

Experienced

ilev

Posted
Posted

An exploit writer at Core Security Technologies has discovered a serious vulnerability that exposes users of Microsoft?s Virtual PC virtualization software to malicious hacker attacks.

The vulnerability, which is unpatched, essentially allows an attacker to bypass several major security mitigations -- Data Execution Prevention (DEP), Safe Exception Handlers (SafeSEH) and Address Space Layout Randomization (ASLR) -- to exploit the Windows operating system.

As a result, some applications with bugs that are not exploitable when running in a not-virtualized operating system are rendered exploitable if running within a guest OS in Virtual PC, according to Ivan Arce, chief technology officer at Core.

http://www.coresecurity.com/content/virtual-pc-2007-hypervisor-memory-protection-bug

  • -Vivicidal-
  • Like 1
Experienced

ilev

Posted
  • Author
Posted

Yes. Probably a few weeks. Yes.

Microsoft knows about it for 7 months now. It may take another 7 months to fix.

Meantime : don't use Virtual PC (like xp mode in Win7 ) "We recommend affected users to run all mission critical Windows applications on non-virtualized systems"

or, use a Linux VM

Grand Master

hdood

Posted
Posted

Microsoft knows about it for 7 months now. It may take another 7 months to fix.

Well then. I guess I meant to say 2014.

Meantime : don't use Virtual PC (like xp mode in Win7 ) "We recommend affected users to run all mission critical Windows applications on non-virtualized systems"

or, use a Linux VM

Good advice for everyone. Apart from the somewhat better integration with the host, VMWare Player and VirtualBox are much better than VPC. They're also free.

Mentor

itzwolf

Posted
Posted

Good advice for everyone. Apart from the somewhat better integration with the host, VMWare Player and VirtualBox are much better than VPC. They're also free.

I use VirtualBox and haven't had any issues with it. (Y)

This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.