Can a virus infected Windows VM guest harm the slackware host?

vivanguarda · 07-22-2011, 07:58 PM

Using another way... If I have slackware-host and windows-guest can I damage all the system in a windows virus problem?

xjonquilx · 07-23-2011, 12:08 AM

Quote:

Originally Posted by vivanguarda

Using another way... If I have slackware-host and windows-guest can I damage all the system in a windows virus problem?

You will thrash the Windows part but not the Slackware part. However if Windows freezes it can freeze up your entire system.

jefro · 07-23-2011, 05:08 PM

A vm is only isolated if you isolate it. If you have network access or shared files or folders then it can cross infect. I think it very small in any case since but since you say a virus we can assume that it is fully compromised and can't be trusted at all.

As to how a coder could gain access within the application has been a subject of great debate. No one is really sure. It really could be done in theory. I don't know of any reports of it being done.

I'd delete the vm and take drastic action on any shared media like usb's any network not fully hardened.

Tinkster · 07-23-2011, 05:28 PM

Quote:

Originally Posted by jefro

A vm is only isolated if you isolate it. If you have network access or shared files or folders then it can cross infect. I think it very small in any case since but since you say a virus we can assume that it is fully compromised and can't be trusted at all.

As to how a coder could gain access within the application has been a subject of great debate. No one is really sure. It really could be done in theory. I don't know of any reports of it being done.

I'd delete the vm and take drastic action on any shared media like usb's any network not fully hardened.

I'm afraid you're not quite right there ...

It has been described e.g., here.

There have been other papers on breaking out of the VM guests,
too, so a bit of googling should give you some results.

Cheers,
Tink

P.S.: I'm now moving this over to Security