Muva nje umcwaningi waseRussia ukhiphe imininingwane yokuba sengozini kwezinsuku ezingama-zero ku-VirtualBox evumela umhlaseli ukuphuma emshinini obonakalayo wokukhipha ikhodi enonya kusistimu yokusebenza yomsingathi.
Umcwaningi waseRussia uSergey Zelenyuk uthole ukuba sengozini kwezinsuku ezingama-zero okuthinta ngqo inguqulo 5.2.20 ye-Virtual Box, kanye nezinguqulo zangaphambilini.
Lokhu kuba sengozini kutholiwe kuzovumela umhlaseli ukuthi abaleke emshinini obonakalayo (uhlelo lokusebenza lwezivakashi) bese uthuthela ku-Ring 3, ukuze lapho usebenzise amasu akhona ukukhuphula amalungelo futhi ufinyelele kuhlelo lokusebenza lwe-Host (kernel noma ring 0).
Ngokuya ngemininingwane yokuqala yokudalulwa, inkinga ikhona kwikhodi ekwabelwana ngayo yesoftware yokwenza izinto, etholakala kuzo zonke izinhlelo ezisebenzayo ezisekelwayo.
Mayelana nokuba sengozini kweZero-Day kutholwe ku-VirtualBox
Ngokuya ngefayela lombhalo elilayishwe ku-GitHub, Umcwaningi waseSaint Petersburg uSergey Zelenyuk, uhlangabezane nochungechunge lwamaphutha angavumela ikhodi enonya ukuba ibaleke kumshini obonakalayo we-VirtualBox (uhlelo lokusebenza lwezivakashi) futhi lusebenza kusistimu yokusebenza engaphansi (i-Host).
Uma ungaphandle kweVirtualBox VM, ikhodi enonya isebenza esikhaleni somsebenzisi esilinganiselwe sohlelo lokusebenza.
"Ukuxhashazwa kunokwethenjelwa ku-100%," kusho uZelenyuk. "Kusho ukuthi ngaso sonke isikhathi noma ayisebenzi nhlobo ngenxa yezinkinga ezingafani noma ezinye izizathu ezicashile engingazibhekanga."
Umcwaningi waseRussia ithi usuku lwe-zero luthinta zonke izinhlobo zamanje ze-VirtualBox, isebenza ngokungakhathaleli i-OS noma isivakashi ukuthi umsebenzisi uyasebenza, futhi uthenjiwe ngokumelene nezilungiselelo ezizenzakalelayo zemishini ebonakalayo esanda kudalwa.
USergey Zelenyuk, ngokungavumelani ngokuphelele nempendulo ka-Oracle ohlelweni lwabo lwe-bug bounty kanye nobungozi obukhona "bokumaketha," ubuye wathumela ividiyo ne-PoC ekhombisa usuku olungu-0 lusebenza ngokumelene nomshini we-Ubuntu osebenza ngaphakathi kwe-VirtualBox ku-Host OS nako kusuka Ubuntu.
UZelenyuk ukhombisa imininingwane yokuthi le bug ingasetshenziswa kanjani kumishini ebonakalayo emisiwe ne- "Intel PRO / 1000 MT Desktop (82540EM)" i-adaptha yenethiwekhi kumodi ye-NAT. Kuyisethingi ezenzakalelayo yazo zonke izinhlelo zezivakashi ukufinyelela amanethiwekhi angaphandle.
Kusebenza kanjani ukuba sengozini
Ngokomhlahlandlela wezobuchwepheshe owenziwe nguZelenyuk, i-adaptha yenethiwekhi isengozini, ivumela umhlaseli onelungelo lezimpande / umlawuli ukuba abalekele ukusingathwa kweringi 3. Ngemuva kwalokho, usebenzisa amasu akhona, umhlaseli angakhuphula amalungelo e-Ring - nge / dev / vboxdrv.
«I- [Intel PRO / 1000 MT Desktop (82540EM)] inobungozi obuvumela umhlaseli onamalungelo omlawuli / wezimpande esivakashini ukuba abalekele kuring3 ophethe. Ngemuva kwalokho umhlaseli angasebenzisa amasu akhona ukukhulisa amalungelo okushayela u-0 nge / dev / vboxdrv, ”kuchaza uZelenyuk ephepheni lakhe elimhlophe ngoLwesibili.
UZelenyuk kusho isici esibalulekile sokuqonda ukuthi ukuba sengozini kusebenza kanjani ukuqonda ukuthi izibambo zicutshungulwa ngaphambi kokuchazwa kwedatha.
Umcwaningi uchaza izindlela zokwenziwa kwephutha lokuphepha ngokuningiliziwe, ekhombisa ukuthi zingazicupha kanjani izimo ezidingekayo ukuthola ukugcwala kwe-buffer okungasetshenziswa kabi ukuphunyuka ekuboshweni kohlelo lokusebenza olusebenzayo.
Okokuqala, kudale isimo sokugeleza kwenamba ephelele kusetshenziswa izincazelo zepakethe - izingxenye zedatha ezivumela i-adaptha yenethiwekhi ukulandelela idatha yepakethe yenethiwekhi kwimemori yohlelo.
Lo mbuso waxhashazwa ukuze kufundwe idatha kusuka kusistimu yokusebenza yezihambeli kuyibhafa yenqwaba futhi kubangele isimo sokuchichima esingaholela ekusebenziseni izikhombisi; noma ukudala isimo sokugcwala kwesitaki.
Isazi siphakamisa ukuthi abasebenzisi banciphise le nkinga ngokushintsha ikhadi lenethiwekhi emishinini yabo ebonakalayo libe yi-AMD PCnet noma i-adaptha yenethiwekhi ephathekayo noma ngokugwema ukusetshenziswa kwe-NAT.
“Kuze kuphele ukwakhiwa kwe-VirtualBox, ungashintsha ikhadi lenethiwekhi lemishini yakho ebonakalayo libe yi-PCnet (noma elilodwa) noma iParavirtualized Network.
Kuthuthuke kakhulu futhi kubuchwepheshe bengqondo yami ... Angiqondi kahle ikota yesigama esiyisebenzisayo.
Inkinga enkulu ukuthi abaningi abane-Linux basebenzisa i-VirtualBox ukuba ne-Windows, futhi kuvela ukuthi i-Windows 7 ayinayo umshayeli wamakhadi isazi eseluleka ukuwafaka, futhi okubi kakhulu, uma ufuna umshayeli we-PCnet online, eyodwa ibonakala ukuthi Uma uyihlaziya nge-virustotal noma enye uthola ama-virus angama-29 amahle, uzobona ukuthi umuntu uwafaka kanjani.