YoVDO

Hunting and Exploiting Recursive MMIO Flaws in QEMU KVM

Offered By: Black Hat via YouTube

Tags

Black Hat Courses Cloud Computing Courses Exploit Development Courses Vulnerability Analysis Courses Security Research Courses

Course Description

Overview

Explore the security implications of recursive MMIO flaws in QEMU KVM hypervisors in this 22-minute Black Hat conference talk. Delve into the potential vulnerabilities that arise when MMIO VM-exit handlers are recursively called during DMA transfers, potentially compromising virtual device state machines or crashing the hypervisor. Gain insights into this understudied attack surface as the speakers analyze root causes, common consequences, and exploitability of recursive MMIO issues. Learn from the security research conducted on QEMU/KVM, a widely-used hypervisor in cloud computing environments, and understand the critical nature of these security concerns.

Syllabus

Hunting and Exploiting Recursive MMIO Flaws in QEMU KVM


Taught by

Black Hat

Related Courses

Software as a Service
University of California, Berkeley via Coursera Software Defined Networking
Georgia Institute of Technology via Coursera Pattern-Oriented Software Architectures: Programming Mobile Services for Android Handheld Systems
Vanderbilt University via Coursera Web-Technologien
openHPI Données et services numériques, dans le nuage et ailleurs
Certificat informatique et internet via France Université Numerique