[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Virtual Machine Trojans: a new type of threat?

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: Re: [Full-disclosure] Virtual Machine Trojans: a new type of threat?
From: Peter Ferrie <peter.ferrie@xxxxxxxxx>
Date: Fri, 17 Apr 2009 14:09:51 -0700

> When a user downloads a virtual machine from the Internet, and then
> runs it on his/her computer, the antivirus installed in the host machine
> simply does not have access to the virtual machine, so the virtual machine
> does not get scanned.

That is simply not true.  AVs can see inside VM images, and scan the files.
The user can also install the AV inside the VM, which will also see the files.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] Virtual Machine Trojans: a new type of threat?
  - From: Julio César García Vizcaíno
- Re: [Full-disclosure] [inbox] Re: Virtual Machine Trojans: a new type of threat?
  - From: Exibar

References:
- [Full-disclosure] Virtual Machine Trojans: a new type of threat?
  - From: sergio

Prev by Date: [Full-disclosure] [ GLSA 200904-16 ] libsndfile: User-assisted execution of arbitrary code
Next by Date: Re: [Full-disclosure] Virtual Machine Trojans: a new type of threat?
Previous by thread: [Full-disclosure] Virtual Machine Trojans: a new type of threat?
Next by thread: Re: [Full-disclosure] Virtual Machine Trojans: a new type of threat?
Index(es):
- Date
- Thread