VM Escape via Chrome and VMware: Six‑CVE Attack Chain

A Korean security firm demonstrated a real‑world VM‑escape chain in which a user clicking a malicious Chrome link inside a VMware guest triggers six linked CVEs—two Chrome sandbox bypasses, two Windows kernel driver flaws, a VM‑information leak, and a Bluetooth buffer overflow—ultimately granting the attacker host‑level code execution and full system compromise.

CVEChromeSecurity

0 likes · 5 min read

VM Escape via Chrome and VMware: Six‑CVE Attack Chain

AntTech

Aug 22, 2023 · Information Security

Ant Group’s Security Labs Win Pwnie Awards for Groundbreaking VM Escape Research

Ant Group’s Ant Security Tianqiong and Lightyear labs earned the prestigious Pwnie Awards’ Best Privilege Escalation prize for their VM escape research on VMware, highlighting the high‑impact nature of virtualization security breakthroughs and underscoring China’s growing prominence in global information security innovation.

Ant GroupPwnie AwardsVM Escape

0 likes · 5 min read

Ant Group’s Security Labs Win Pwnie Awards for Groundbreaking VM Escape Research

Liangxu Linux

Jan 18, 2021 · Information Security

Escaping VMware: The Story Behind a VM Escape Exploit and Anti‑VM Tricks

A vivid narrative follows two hackers who discover they are inside a VMware virtual machine, exploit a CVE‑2017‑4901 backdoor heap overflow to escape, only to realize they have entered another VM, while the article also explains virtualization detection techniques and anti‑VM methods.

Anti-VMCVEVM Escape

0 likes · 9 min read

Escaping VMware: The Story Behind a VM Escape Exploit and Anti‑VM Tricks