YoVDO

Scavenger - Misuse Error Handling Leading to Qemu - KVM Escape

Offered By: Black Hat via YouTube

Tags

Black Hat Courses Cybersecurity Courses Ethical Hacking Courses Penetration Testing Courses Privilege Escalation Courses

Course Description

Overview

Explore a critical security vulnerability in hypervisors through this 35-minute Black Hat conference talk. Delve into how incorrect implementation of error handling code and insufficient error propagation can lead to severe security issues, including privilege escalation. Learn about a full guest-to-host escape exploitation technique that leverages misused error handling in Qemu/KVM. Gain insights from security researchers Xingwei Lin, Gaoning Pan, Jiashui Wang, Chunming Wu, and Xinlei Ying as they demonstrate the potential risks associated with error handling code in virtualization environments.

Syllabus

Scavenger: Misuse Error Handling Leading to Qemu/KVM Escape


Taught by

Black Hat

Related Courses

Attack on Titan M, Reloaded - Vulnerability Research on a Modern Security Chip
Black Hat via YouTube Attacks From a New Front Door in 4G & 5G Mobile Networks
Black Hat via YouTube AAD Joined Machines - The New Lateral Movement
Black Hat via YouTube Better Privacy Through Offense - How to Build a Privacy Red Team
Black Hat via YouTube Whip the Whisperer - Simulating Side Channel Leakage
Black Hat via YouTube