MS Virtual PC Flaw Defeats Windows Defenses 141
Coop's Troops writes "An exploit writer at Core Security Technologies has discovered a serious vulnerability that exposes users of Microsoft's Virtual PC virtualization software to malicious hacker attacks. The vulnerability, which is unpatched, essentially allows an attacker to bypass several major security mitigations — DEP, SafeSEH and ASLR — to exploit the Windows operating system. As a result, some applications with bugs that are not exploitable when running in a not-virtualized operating system are rendered exploitable if running within a guest OS in Virtual PC."
Re:Which only goes to show, it's always something (Score:5, Funny)
Re:Ugh, this isn't good. (Score:3, Funny)
Re:Mac OS X (Score:3, Funny)
Not all of us can afford Macs.