Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Escaping From VMware Workstation Through the Disk Controller

Hack In The Box Security Conference via YouTube

Overview

Explore the intricacies of VM escape vulnerabilities through disk controllers in VMware Workstation in this 49-minute conference talk from Hack In The Box Security Conference. Dive into the complex world of disk controllers, including emulated models like 53c1030 PCI-X Fusion-MPT Dual Ultra320 SCSI and LSI53C895A, as well as paravirtual ones such as PVSCSI and Virtio-SCSI. Learn about the SCSI specification and how data is processed between guest OS drivers and disk controllers. Discover a previously unexploited vulnerability in VMware hypervisors' disk controllers that allows for VM escape with nearly 100% success rate in under a second. Witness demonstrations of exploits against both Linux and Windows versions of VMware Workstation, including how to bypass Control Flow Guard in Windows. Gain insights from senior vulnerability researcher Wenxu Yin, who has extensive experience in network device and hypervisor security.

Syllabus

#HITB2023HKT D1T2 - Escaping From VMware Workstation Through The Disk Controller - Wenxu Yin

Taught by

Hack In The Box Security Conference

Reviews

Start your review of Escaping From VMware Workstation Through the Disk Controller

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.