1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

VENOM - Major exploit affecting most VPS's (Xen, KVM, etc.)

Discussion in 'Server Configuration and Hosting' started by Mouth, May 14, 2015.

  1. Mouth

    Mouth Well-Known Member

    If you have a VPS, then strongly suggest you check with your hosting provider that they are urgently mitigating this newly released major exploit.

    "a security vulnerability in the virtual floppy drive code used by many computer virtualization platforms. This vulnerability may allow an attacker to escape from the confines of an affected virtual machine (VM) guest and potentially obtain code-execution access to the host. Absent mitigation, this VM escape could open access to the host system and all other VMs running on that host, potentially giving adversaries significant elevated access to the host’s local network and adjacent systems."

    More: http://venom.crowdstrike.com
     
    Liam W likes this.
  2. EQnoble

    EQnoble Well-Known Member

    Emulate a floppy drive, take over a server...seems legit. Either way I'm patched.
     
  3. Tower

    Tower Active Member

  4. I was just clicking over to my homepage, when my Malwarebytes Anti-Exploit tool popped up this message.............


    malwarebytes.png


    I have no idea if this is related or not, but I briefly saw an Adobe error at the top of the page before clicking away too quickly. It's a brand new site, could have just been a fluke.
     
  5. D.O.A.

    D.O.A. Well-Known Member

    I like how malware gets its own themeforest theme these days.

    Heartbleed didn't have enough infograph.jpg so this new one pleases me.
     

Share This Page