26 matches found
EUVD-2004-0115
Malware in sbrugna...
Microsoft Virtual PC Hypervisor Virtual Machine Monitor Security Bypass Vulnerability
Windows Virtual PC is the latest Microsoft virtualization technology. A security bypass vulnerability exists in Microsoft Virtual PC Hypervisor Virtual Machine Monitor, which can be exploited by an attacker to bypass memory protection mechanisms and obtain sensitive information...
How Assumptions May Be Making Us All Less Secure
In the space of a given year, untold thousands of vulnerabilities are found in operating systems, applications and plug-ins. In many cases, the affected vendors fix the flaws, either with a patch, a workaround or some other mitigation. But there’s also a huge population of security bugs that...
CVE-2010-1225
The memory-management implementation in the Virtual Machine Monitor aka VMM or hypervisor in Microsoft Virtual PC 2007 Gold and SP1, Virtual Server 2005 Gold and R2 SP1, and Windows Virtual PC does not properly restrict access from the guest OS to memory locations in the VMM work area, which allo...
Privilege escalation
The memory-management implementation in the Virtual Machine Monitor aka VMM or hypervisor in Microsoft Virtual PC 2007 Gold and SP1, Virtual Server 2005 Gold and R2 SP1, and Windows Virtual PC does not properly restrict access from the guest OS to memory locations in the VMM work area, which allo...
Virtual PC Hypervisor - Memory Protection
Virtual PC Hypervisor - Memory Protection -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Virtual PC Hypervisor Memory Protection Vulnerability 1. Advisory Information Title: Virtual PC Hypervisor Memory Protection...
Information disclosure
The Virtual Machine Monitor VMM in Microsoft Virtual PC 2004 SP1, 2007, and 2007 SP1, and Microsoft Virtual Server 2005 R2 SP1, does not enforce CPU privilege-level requirements for all machine instructions, which allows guest OS users to execute arbitrary kernel-mode code and gain privileges...
CVE-2009-1542
The Virtual Machine Monitor VMM in Microsoft Virtual PC 2004 SP1, 2007, and 2007 SP1, and Microsoft Virtual Server 2005 R2 SP1, does not enforce CPU privilege-level requirements for all machine instructions, which allows guest OS users to execute arbitrary kernel-mode code and gain privileges...
Microsoft Virtual PC/Server Privilege Escalation Vulnerability (969856)
This host is missing a critical security update according to Microsoft Bulletin MS09-033. OpenVAS Vulnerability Test $Id: secpodms09-033.nasl 5363 2017-02-20 13:07:22Z cfi $ Microsoft Virtual PC/Server Privilege Escalation Vulnerability 969856 Authors: Antu Sanadi Copyright: Copyright c 2009...
Microsoft Virtual PC and Virtual Server Privilege Escalation Vulnerability
Description Microsoft Virtual PC and Virtual Server are prone to a privilege-escalation vulnerability caused by an error in decoding privileged instructions. Note that this issue affects only systems that do not use hardware-assisted virtualization. Successful exploits may allow local attackers t...
Microsoft Virtual PC / Virtual Server buffer overflow
Heap based buffer overflow allows guest operation system user with administrative privileges to execute code on host operation system or another guest operation system...
Heap overflow
Heap-based buffer overflow in Microsoft Virtual PC 2004 and PC for Mac 7.1 and 7, and Virtual Server 2005 and 2005 R2, allows local guest OS administrators to execute arbitrary code on the host OS via unspecified vectors related to "interaction and initialization of components."...
Microsoft Virtual PC and Virtual Server Heap Overflow Vulnerability
Description Microsoft Virtual PC and Virtual Server are prone to a local heap-overflow vulnerability. To exploit this issue, attackers must have administrative privileges for the guest operating system. Attackers may exploit this issue to execute arbitrary code in the context of the host operatin...
CVE-2004-0115
VirtualPCServices in Microsoft Virtual PC for Mac 6.0 through 6.1 allows local attackers to truncate and overwrite arbitrary files, and execute arbitrary code, via a symlink attack on the VPCServicesLog temporary file...
CVE-2004-0115
VirtualPCServices in Microsoft Virtual PC for Mac 6.0 through 6.1 allows local attackers to truncate and overwrite arbitrary files, and execute arbitrary code, via a symlink attack on the VPCServicesLog temporary file...
Microsoft Virtual PC for Mac insecurely handles temporary file
Overview A component program of Microsoft Virtual PC for Mac uses an insecure method for handling a temporary file. This could allow an attacker with local system access to gain elevated privileges. Description Microsoft Virtual PC for Mac is a product that allows users of the Apple MacOS X...
Microsoft Security Bulletin MS04-005
Microsoft Security Bulletin MS04-005 Vulnerability in Virtual PC for Mac could lead to privilege elevation 835150 Issued: February 10, 2004 Version: 1.0 Summary Who should read this document: Customers who are using Microsoft® Virtual PC for Mac Impact of vulnerability: Elevation of Privilege...
Microsoft Virtual PC Services Insecure Temporary File Creation
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 @stake, Inc. www.atstake.com Security Advisory Advisory Name: Virtual PC Services Insecure Temporary File Creation Release Date: 02/10/2004 Application: Connectix Virtual PC 6.0.x Microsoft Virtual PC 6.1 Platform: Mac OS X Severity: Local privilege...
Microsoft Virtual PC For Mac Temporary File Privilege Escalation Vulnerability
Description Microsoft has reported an issue in Virtual PC for Mac that may permit a local attacker to gain elevated privileges on a system hosting the software. This is due to insecure handling of temporary files by the setuid root VirtualPCServices binary, potentially permitting a malicious loca...
Security Update for Microsoft Virtual PC 2007 Service Pack 1 (KB969856)
A security issue has been identified that could allow elevation of privilege on virtual machines. You can help protect your computer by installing this update from Microsoft. After you install this item, you need to restart your computer...