Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The memory-management implementation in the Virtual Machine Monitor (aka VMM or hypervisor) in Microsoft Virtual PC 2007 Gold and SP1, Virtual Server 2005 Gold and R2 SP1, and Windows Virtual PC does not properly restrict access from the guest OS to memory locations in the VMM work area, which allows context-dependent attackers to bypass certain anti-exploitation protection mechanisms on the guest OS via crafted input to a vulnerable application. NOTE: the vendor reportedly found that only systems with an otherwise vulnerable application are affected, because "the memory areas accessible from the guest cannot be leveraged to achieve either remote code execution or elevation of privilege and ... no data from the host is exposed to the guest OS."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft Virtual PC内存管理绕过安全限制漏洞
Vulnerability Description
Microsoft Virtual PC是流行的虚拟机工具,允许在同一台计算机上运行多个操作系统。 Microsoft Virtual PC 2007 Gold及SP1,Virtual Server 2005 Gold 及R2 SP1, 和 Windows Virtual PC的Virtual Machine Monitor(即VMM或hypervisor)的内存管理实施对VMM工作区由客户操作系统到内存地址的访问不设限,受骗用户可在客户操作系统向脆弱的应用发送特制输入,从而避开反剥削保护机制。
CVSS Information
N/A
Vulnerability Type
N/A