MS Virtual PC Flaw Defeats Windows Defenses

Posted by kdawson on Tuesday March 16, 2010 @11:01AM from the around-the-maginot-line dept.

Coop's Troops writes "An exploit writer at Core Security Technologies has discovered a serious vulnerability that exposes users of Microsoft's Virtual PC virtualization software to malicious hacker attacks. The vulnerability, which is unpatched, essentially allows an attacker to bypass several major security mitigations — DEP, SafeSEH and ASLR — to exploit the Windows operating system. As a result, some applications with bugs that are not exploitable when running in a not-virtualized operating system are rendered exploitable if running within a guest OS in Virtual PC."

1 of 141 comments (clear)

Min score:

Reason:

Sort:

Re:Linux by Lunix+Nutcase · 2010-03-16 11:26 · Score: 1, Redundant

Because Linux doesn't have the apps they want? They don't want to have to relearn years of knowledge built up using Windows? That it's not as simple to switch an entire OS and migrate all your programs and data as people like you would have people believe?