RSS Alerts

Share

More services

Related Links

Related Stories

  • Virtualization could double in 2010, but what about security?
    The number of organizations with at least half of their servers virtualized is expected to double in 2010 to 51%, according to a survey of 480 IT professionals about virtualization conducted by identity and access management vendor Centrify Corporation.
  • Virtualization: virtually a commodity
    Virtualization is a welcome medicine for many of IT's irritating symptoms. But is there a risk that basic information security hygiene will suffer as a result? William Knight investigates
  • Comment: Back to information security basics
    As security companies add new technologies to meet the demands of both the evolving threat landscape and a compressed market, it is important they try not to forget about the core information security technologies that have been protecting businesses for decades
  • Adobe to patch critical flaw in Flash Player, Reader, and Acrobat next week
    Adobe plans to issue an emergency fix next week for a critical vulnerability in its Flash Player, as well as the authplay.dll component of Adobe Reader and Acrobat for Windows and Mac, which could cause a crash and allow an attack to take control of the affected system.
  • Patch Tuesday packs in solutions to 34 serious Microsoft flaws
    Yesterday's Patch Tuesday update from Microsoft was a packed one, with no less than 14 bulletins covering 34 serious security vulnerabilities in Internet Explorer, Windows, Office, Silverlight, XML Core Services and Server Message Block.

Top 5 Stories

News

Core Security finds Microsoft virtualization flaw

17 March 2010

Security research company Core Security says that it has found a security flaw in Microsoft's Virtual PC hypervisor that could undermine fundamental security measures included in the Vista and Windows 7 operating systems.

Core Security, which said that it reported the vulnerability to Microsoft seven months ago, warns that it could allow attackers to bypass the Data Execution Prevention protection mechanism within later versions of Microsoft operating systems. Address Space Layout Randomization, which shuffles the memory used by Microsoft's code to make it harder for attackers to implement buffer overflows, is also neutralized by the attack, Core Security said.

"A vulnerability found in the memory management of the Virtual Machine Monitor makes memory pages mapped above the 2GB available with read or read/write access to user-space programs running in a guest operating system," said Core Security in an advisory. Safe and Structured Error Handling (SafeSEH), another security measure employed by Microsoft, is also compromised by the vulnerability, it warned.

The problem is that these measures, when disabled in guest operating systems, open them up to a potentially large number of security exploits that might otherwise have been stopped. The flaw in the base hypervisor could therefore render huge numbers of virtual machines vulnerable to attack. "In particular, an application running on Windows 7 in XP Mode may be exploitable while the same application running directly on a Windows XP SP3 system is not," it said.

Microsoft's Hyper-V technology is not affected by the bug, Core Security said. However, it advised that for the time being, until Microsoft fixes the problem in future updates, customers run all mission-critical Windows applications on non-virtualized systems, or to use virtualization technologies that are not affected by the bug. 

This article is featured in:
Application Security

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Terms & Conditions |Privacy |Website Design|Reed Exhibitions. All rights reserved. Copyright © 2012