Leaderboard

Foreword These bugs are subject to a 90 day disclosure deadline. If 90 days elapse without a broadly available patch, then the bug report will be made available to the public. Summary VMware Workstation offers printer “virtualization”, allowing a Guest OS to access and print documents on printers available to the Host OS. On VMware Workstation 11.1, the virtual printer device is added by default to new VMs, and on recent Windows Hosts, the Microsoft XPS Document Writer is available as a default printer. Even if the VMware Tools are not installed in the Guest, the COM1 port can be used to talk to the Host printing Proxy. vprintproxy.exe is launched on the Host by vmware-vmx.exe as whichever user started VMware. vmware-vmx.exe and vprintproxy.exe communicate through named pipes. When writing to COM1 in the Guest, the packets will eventually end up in vprintproxy.exe for processing. I won’t go over the subtleties of the protocol, but basically the printer virtualization layer is a glorified file copy operation of EMFSPOOL files from the Guest to the Host. The EMFSPOOL and contained EMF files are processed on the Host by vprintproxy.exe, and can be previewed on the Host thanks to TPView.dll. By supplying specially crafted EMFSPOOL and EMF files to COM1, one can trigger a variety of bugs in the vprintproxy.exe process, and achieve code execution on the Host. Environment The rest of this document assumes a Windows 8.1 amd64 Host, a Windows 7 x86 Guest running under VMware Workstation 11.1, with all patches installed. Other platforms have not been investigated. A fully working exploit is provided for this particular environment. Exploit, video si detalii suplimentare: https://docs.google.com/document/d/1sIYgqrytPK-CFWfqDntraA_Fwi2Ov-YBgMtl5hdrYd4/preview#heading=h.7x6i7fuyylsw

Poate pentru ca NORTON targeteaza persoanele nu prea tehnice care se lasa mintite de doua vorbe din 3 reclame?

Daca tot dai copy-paste, macar formateaza putin textul si adapteaza-l forumului nostru. Lasa font-color-ul default al temei ca nu toti avem tema aia neagra ca sa putem sa vedem scrisul tau alb.

Am redeschis fun stuff.. go for it

Si ce te bagi in seama frustratule up

Citeste regulamentul sectiunii - meriti warn si ban https://rstforums.com/forum/30346-regulament-rst-market-post549543.rst#post549543 @Nytro Faptul ca nu ti-a raspuns nimeni pana acum e un mesaj in sine: nobody gives a shit!