PoC exploit Released for VMware Workstation guest-to-host escape Vulnerability - Cybernoz - Cybersecurity News

PoC Released for VMware Workstation Guest-to-Host Escape Vulnerability

NCC Group detailed a VMware Workstation guest-to-host escape achievable from a compromised VM via a logic flaw in virtual device handling that permits memory corruption and controlled code execution on the host process. The write-up shows a practical exploitation path from guest userland to host compromise, validating real-world risk. The attack requires execution inside a […] The post PoC Released for VMware Workstation Guest-to-Host Escape Vul…

PoC exploit Released for VMware Workstation guest-to-host escape Vulnerability - Cybernoz - Cybersecurity News

A proof-of-concept (PoC) exploit has been released for a critical vulnerability chain in VMware Workstation that allows an attacker to escape from a guest virtual machine and execute arbitrary code on the host operating system. The exploit successfully chains together an information leak and a stack-based buffer overflow vulnerability to achieve a full guest-to-host escape, one of the most severe types of security flaws in virtualization softwar…