VirtualBoxºÍVMware ESXiÐéÄâ»úÌÓÒÝÎó²î

Ðû²¼Ê±¼ä 2018-11-13
11Ô£¬ £¬£¬£¬£¬£¬ £¬Î¬ËûÃüÔÚÒ»ÖÜÄÚÐû²¼ÁË2Ìõ¹ØÓÚÐéÄâ»úÌÓÒÝÎó²îµÄÇå¾²¼òѶ£¬ £¬£¬£¬£¬£¬ £¬»®·ÖÉæ¼°Á½´óÈí¼þ²úÆ·£ºVirtualBoxºÍVMwareϵÁУ¬ £¬£¬£¬£¬£¬ £¬Îó²îÓ°Ïì¹æÄ£½Ï¹ã£¬ £¬£¬£¬£¬£¬ £¬½¨Òé¸÷È˹Ø×¢¡£¡£¡£¡£ ¡£


VirtualBoxÐéÄâ»úÌÓÒÝÎó²î


1¡¢Åä¾°ÐÎò


11ÔÂ7ÈÕ,¶íÂÞ˹Îó²îÑо¿Ö°Ô±ÔÚGitHubÉÏÅû¶һVirtualBoxÐéÄâ»úÌÓÒÝ0dayÎó²îµÄÏêϸÐÅÏ¢£¬ £¬£¬£¬£¬£¬ £¬¹¥»÷ÕßʹÓøÃÎó²îÌÓÀëVirtualBoxÐéÄâ»ú£¨·Ã¿Í²Ù×÷ϵͳ£©£¬ £¬£¬£¬£¬£¬ £¬ÔڵײãϵͳÉÏÖ´ÐС£¡£¡£¡£ ¡£Ò»µ©ÍÑÀëÁËVirtualBoxÐéÄâ»ú£¬ £¬£¬£¬£¬£¬ £¬¶ñÒâ´úÂ뽫ÔڵײãϵͳµÄÓÐÏÞÓû§¿Õ¼ä£¨ÄÚºËRing 3£©ÖÐÔËÐУ¬ £¬£¬£¬£¬£¬ £¬ÉõÖÁ¹¥»÷Õß¿ÉÒÔʹÓÃÐí¶àÒÑÖªµÄȨÏÞÌáÉýÎó²îÀ´»ñµÃÄں˼¶»á¼ûȨÏÞ£¨Ring 0£©¡£¡£¡£¡£ ¡£


2¡¢Ó°Ïì¹æÄ£


Ó°Ïì°æ±¾£ºVirtualBox 5.2.20¼°ÔçÆÚ°æ±¾
Ö÷»úϵͳ£ºí§Òâ
¿Í»§ÏµÍ³£ºí§Òâ
ÐéÄâ»úÉèÖãºÄ¬ÈÏ£¨Íø¿¨ÎªIntel Pro/1000 MT ×ÀÃæ°æ£¨82540EM£©ÍøÂçģʽΪNAT£©

¼øºÚµ£±£Íø(jhdbw)¡¤×î¾ßȨÍþΨһάȨµ£±£Æ½Ì¨


3¡¢ÐÞ¸´¼Æ»®


½«ÐéÄâ»úÍø¿¨ÉèÖÃΪPCnet»ò°ëÐéÄâÍøÂçģʽ


4¡¢²Î¿¼Á´½Ó


https://github.com/MorteNoir1/virtualbox\_e1000_0day
https://www.bleepingcomputer.com/news/security/virtualbox-zero-day-vulnerability-details-and-exploit-are-publicly-available/


VMware ESXiÐéÄâ»úÌÓÒÝÎó²î


1¡¢Îó²îÐÎò


11ÔÂ9ÈÕ£¬ £¬£¬£¬£¬£¬ £¬VMware¹Ù·½Ðû²¼Ç徲ͨ¸æ£¬ £¬£¬£¬£¬£¬ £¬ÐÞ¸´ÁËÁ½¸öÐéÄâ»úÌÓÒÝÎó²î£¨CVE-2018-6981ºÍCVE-2018-6982£©¡£¡£¡£¡£ ¡£VMware ESXi¡¢Fusion ºÍ Workstation ÔÚvmxnet3ÐéÄâÍøÂçÊÊÅäÆ÷Öб£´æδ³õʼ»¯µÄÕ»ÄÚ´æʹÓᣡ£¡£¡£ ¡£¸ÃÎÊÌâ¿ÉÄܵ¼ÖÂguestÐéÄâ»úÔÚËÞÖ÷»úÉÏÖ´ÐдúÂë¡£¡£¡£¡£ ¡£µ±ÆôÓÃÁËvmxnet3£¬ £¬£¬£¬£¬£¬ £¬Ôò»á·ºÆð´ËÎÊÌâ¡£¡£¡£¡£ ¡£Î´Ê¹ÓÃvmxnet3Íø¿¨µÄÐéÄâ»ú²»ÊÜ´ËÎó²îµÄÓ°Ïì¡£¡£¡£¡£ ¡£

¼øºÚµ£±£Íø(jhdbw)¡¤×î¾ßȨÍþΨһάȨµ£±£Æ½Ì¨


2¡¢Ó°Ïì¹æÄ£


VMware vSphere ESXi (ESXi)
VMware Workstation Pro/Player (Workstation)
VMware Fusion Pro, Fusion (Fusion)




3¡¢ÐÞ¸´¼Æ»®


VMwareÒÑÐû²¼²úÆ·Ïà¹Ø°æ±¾µÄ²¹¶¡£¡£¡£¡£ ¡£º


ESXi 6.0
https://my.vmware.com/group/vmware/patch
https://docs.vmware.com/en/VMware-vSphere/6.0/rn/esxi600-201811001.html


ESXi 6.5
https://my.vmware.com/group/vmware/patch
https://docs.vmware.com/en/VMware-vSphere/6.5/rn/esxi650-201811001.html


ESXi 6.7
https://my.vmware.com/group/vmware/patch
https://docs.vmware.com/en/VMware-vSphere/6.7/rn/esxi670-201811001.html


VMware Workstation Pro 14.1.3
https://www.vmware.com/go/downloadworkstation
https://docs.vmware.com/en/VMware-Workstation-Pro/index.html


VMware Workstation Player 14.1.3
https://www.vmware.com/go/downloadplayer
https://docs.vmware.com/en/VMware-Workstation-Player/index.html


VMware Fusion Pro / Fusion 10.1.3
https://www.vmware.com/go/downloadfusion
https://docs.vmware.com/en/VMware-Fusion/index.html


4¡¢²Î¿¼Á´½Ó


https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6981 
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6982


ÉùÃ÷£º±¾×ÊѶÓɼøºÚµ£±£ÍøάËûÃüÇ徲С×é±àÒëºÍÕûÀí