Threat Digest

Illustration of VirtualBox Slirp heap corruption enabling VM to host userspace escape

VirtualBox's Dusty 2017 Heap Hack: Guests Storming the Host via Slirp Shenanigans

Folks figured VM NAT was bulletproof userspace sleight-of-hand. Wrong. This revived 2017 exploit blueprint shows guests corrupting heaps to hijack the host process.

4 min read 6 hours ago

#CVE-2017-3558

VirtualBox's Dusty 2017 Heap Hack: Guests Storming the Host via Slirp Shenanigans

Stay in the loop