Re: Mac Worst nightmare, get hacked by Windows
- From: Steve de Mena <steve@xxxxxxxxxxxxxxx>
- Date: Fri, 17 Apr 2009 17:29:46 -0700
Sermo Malifer wrote:
On Fri, 17 Apr 2009 13:09:21 -0700, Steve de Mena wrote:
Sermo Malifer wrote:On Thu, 16 Apr 2009 10:18:24 -0700, Steve de Mena wrote:Who else would be running the Guest OS? God?
Sermo Malifer wrote:command=viewArticleBas...On Thu, 2009-04-16 at 00:45 -0700, Steve de Mena wrote:MuahMan wrote:On Apr 15, 7:44 pm, Mike <m...@xxxxxxxxxxxxxxx> wrote:http://www.computerworld.com/action/article.do?Why did you focus on that one sentence and ignore everything else I"The vulnerability is also present in VMware"VMware bug allows Windows hack to attack Macs"How could OS X, with it's unix bullet proof security, allow a lowlyrticleId=9131647&source=rss_news<crickets chirping...>
--
Mike
application to circumvent security??
http://tinyurl.com/ddfj7z
If the title weren't enough to answer your question, reading the
article should have:
"This is indeed a guest-to-host exploit," Kortchinsky
said in an e-mail today. "It uses several
vulnerabilities in the 'Display functions' (as VMware
put it) that allow [someone] to read and write
arbitrary memory in the host. Thus the guest can run
some code on the host, effectively bypassing ASLR and
DEP on Vista SP1."
The same tactics can be employed against a guest
operating system -- say, Windows XP -- running in
Fusion on a Mac powered by Apple's Mac OS X,
Kortchinsky confirmed. "The vulnerability is also
present in VMware Fusion and as such would allow a
guest (Windows or Linux) to run code on the Mac OS X
host," he said. "We didn't implement this exploit
though, but will probably in a near future."
VMware and Windows are at the bottom of the problem, not flaws in OSX
security.
Fusion and as such would allow a guest (Windows or
Linux) to run code on the Mac OS X host," he said.
quoted to you?
There is a flaw if OS X allows this to happen when an ordinary userMost ordinary users don't run a guest OS in a virtual machine, and the
runs it without an Administrator prompt.
flaw is in Windows and the VM, not in OS X.
Not an ordinary user, the person you expected to be affected by this.
What am I? I'm an ordinary user. I run my work laptop (XP SP 2) "virtually" on my Mac Pro using VMWare Fusion.
Hey, (1) do you know what VMWare Fusion is? (2) Have you used it??
I expect OS X (not
"Windows" to prompt me for a password if anything is done that could
harm the system.
Running a virtual machine isn't the same thing as running an application. I don't see how you expect Mac OS X to manage the operation of a foreign OS running on virtual hardware!
Of course it is. VMWare Fusion is an application.
Hey, (1) do you know what VMWare Fusion is? (2) Have you used it??
Steve
.
- Follow-Ups:
- Re: Mac Worst nightmare, get hacked by Windows
- From: GreyCloud
- Re: Mac Worst nightmare, get hacked by Windows
- References:
- Mac Worst nightmare, get hacked by Windows
- From: Mike
- Re: Mac Worst nightmare, get hacked by Windows
- From: MuahMan
- Re: Mac Worst nightmare, get hacked by Windows
- From: Steve de Mena
- Re: Mac Worst nightmare, get hacked by Windows
- From: Sermo Malifer
- Re: Mac Worst nightmare, get hacked by Windows
- From: Steve de Mena
- Re: Mac Worst nightmare, get hacked by Windows
- From: Sermo Malifer
- Re: Mac Worst nightmare, get hacked by Windows
- From: Steve de Mena
- Re: Mac Worst nightmare, get hacked by Windows
- From: Sermo Malifer
- Mac Worst nightmare, get hacked by Windows
- Prev by Date: Re: VISTA sales UP 20%
- Next by Date: Re: Mac Worst nightmare, get hacked by Windows
- Previous by thread: Re: Mac Worst nightmare, get hacked by Windows
- Next by thread: Re: Mac Worst nightmare, get hacked by Windows
- Index(es):
Relevant Pages
|
