Explore a 39-minute Black Hat conference talk that delves into vulnerability research and exploitation of VMware's hypervisor, specifically focusing on the SVGA virtual graphics device. Learn how a computer security researcher from CENSUS S.A. progressed from basic hypervisor knowledge to discovering previously undisclosed vulnerabilities in one of the most widely-used hypervisor platforms. Gain detailed insights into the bug hunting methodology, understand the process of identifying robust primitives for guest-to-host escape exploits, and examine multiple discovered vulnerabilities along with their exploitation techniques. Follow along as the speaker breaks down the complex nature of SVGA, a critical component that enables guest environments to render graphics, and discover how its intricacy makes it an attractive target for security research.
Bug Hunting Journey on VMware's Hypervisor - Guest-to-Host Escape Exploits
Overview
Syllabus
Bugs of Yore: A Bug Hunting Journey on VMware's Hypervisor
Taught by
Black Hat
Related Courses
-
Bug Hunting in VMware Device Virtualization - A Dragon Slaying Guide
-
URB Excalibur - New VMware All-Platform VM Escapes
-
Bug Hunting in VMware Device Virtualization - Security Vulnerabilities and Attack Surfaces
-
Facebook Messenger Bug Hunting - A Bug's End-to-End Lifecycle
-
Hunting for macOS Application Logic Bugs - Local Privilege Escalation Vulnerabilities
-
Escaping From VMware Workstation Through the Disk Controller
