3、VMware修复拖拽触发任意代码执行漏洞
标题:Hackers Find Code Execution Flaw in VMware Workstation
作者信息:November 14, 2016 By Eduard Kovacs
//BEGIN
VMware informed customers on Sunday that it has patched a critical out-of-bounds memory access vulnerability affecting its Workstation and Fusion products.
The flaw, tracked as CVE-2016-7461, affects the drag-and-drop function and it can be exploited from the guest to execute arbitrary code on the host operating system running Fusion or Workstation.
The security hole affects Workstation Player and Pro 12.x, and Fusion (Pro) 8.x. The issue has been patched with the release of versions 12.5.2 and 8.5.2, respectively. ESXi is not impacted.
According to VMware, the vulnerability cannot be exploited against Workstation Pro or Fusion if both the drag-and-drop and copy-and-paste functions are disabled. This workaround does not work on Workstation Player.
虚拟机厂家VMWARE上周日通报其用户,例外发布补丁,修复了一个关键的漏洞。该漏洞的编号是CVE-2016-7461,影响虚拟机和主机之间的拖拽功能,利用该漏洞,通过虚拟机可以执行主机上的任意命令。部分VMWARE的产品受到影响。当然如果禁止了拖拽或者粘贴复制功能的话,那么该漏洞将不会起作用。
//END
The vulnerability was disclosed recently at PwnFest, a hacking competition that took place in South Korea at the 2016 Power Of Community (POC) security conference.
VMware has credited Qinghao Tang and Xinlei Ying from Qihoo 360’s Marvel Team and JungHoon Lee (lokihardt) for finding the flaw. The reward for hacking VMware Workstation Pro 12 on Windows 10 at PwnFest was $150,000. PwnFest participants earned hundreds of thousands of dollars for hacking products from Microsoft, Google, Adobe, VMware and Apple.
The virtualization giant informed customers last week that several of its products are affected by the recently disclosed Linux kernel vulnerability dubbed “Dirty COW” (CVE-2016-5195). The impacted products include Identity Manager, vRealize Automation and vRealize Operations.
The vendor has started releasing software updates to address the local privilege escalation flaw. Patches for Identity Manager, vRealize Automation and version 5.x of vRealize Operations are still pending.
该漏洞由在韩国举行的黑客大赛爆出,发现者是来自中国的360公司的Marvel团队(发现的OS平台是最新的Windows 10,VMWARE的版本是Workstation Pro12),VMWARE公司奖励了发现者15万美金。当然该大赛提供的总奖金额上百万美元,这些奖金来源是平时大家耳熟能详的漏洞窟窿大家:微软、苹果、谷歌、Adobe以及VMWARE等等。
其实上周VMWARE刚刚发布过一个很严重的漏洞,还起了一个酷的名字:脏牛Dirty COW,漏洞编号是CVE-2016-5195,而当时影响的产品类型包括的是Identity Manager,vRealize Automation以及vRealize Operations.
点评:数字挖洞能力挺强呀.... |