|
|
Пишет LWN.net (![[info]](http://lj.rossia.org/img/syndicated.gif){kind=small} syn_lwnheadline)@ 2017-04-07 16:22:00 |
 |
|
 |
|
|
|
|
|
|
 |
|
 |
Pandavirtualization: Exploiting the Xen hypervisor (Project Zero)
The latest installment
from Google's Project Zero covers the development of an exploit for this unpleasant Xen
vulnerability. "To demonstrate the impact of the issue, I
created an exploit that, when executed in one 64-bit PV guest with root
privileges, will execute a shell command as root in all other 64-bit PV
guests (including dom0) on the same physical machine."
The latest installment
from Google's Project Zero covers the development of an exploit for this unpleasant Xen
vulnerability. "To demonstrate the impact of the issue, I
created an exploit that, when executed in one 64-bit PV guest with root
privileges, will execute a shell command as root in all other 64-bit PV
guests (including dom0) on the same physical machine."
