Hunting and Exploiting Recursive MMIO Flaws in QEMU KVM

Overview

Explore the security implications of recursive MMIO flaws in QEMU KVM hypervisors in this 22-minute Black Hat conference talk. Delve into the potential vulnerabilities that arise when MMIO VM-exit handlers are recursively called during DMA transfers, potentially compromising virtual device state machines or crashing the hypervisor. Gain insights into this understudied attack surface as the speakers analyze root causes, common consequences, and exploitability of recursive MMIO issues. Learn from the security research conducted on QEMU/KVM, a widely-used hypervisor in cloud computing environments, and understand the critical nature of these security concerns.

Syllabus

Hunting and Exploiting Recursive MMIO Flaws in QEMU KVM

Taught by

Black Hat

Reviews

Start your review of Hunting and Exploiting Recursive MMIO Flaws in QEMU KVM

3000+ Courses from California Community Colleges

Most common

Popular subjects

Popular courses

Hunting and Exploiting Recursive MMIO Flaws in QEMU KVM

Overview

Syllabus

Taught by

Reviews

3000+ Courses from California Community Colleges

Taught by

Alcatraz - A Practical Hypervisor Sandbox to Prevent Escapes from the KVM - QEMU and KVM-Based MicroVMs

Timekiller: Escape From QEMU/KVM - Exploiting Asynchronous Clock Vulnerabilities

Scavenger - Misuse Error Handling Leading to Qemu - KVM Escape

A QEMU Black Box Escape Via USB Device

Never Stop Learning.