Thinking Outside The Box [dusted off draft from 2017]
Summary
This Google Project Zero blog post is a slightly edited draft from 2017 detailing a vulnerability (CVE-2017-3558) that allows escaping from a VM to the VirtualBox host userspace process. The author never completed the second half, which involved escalating privileges from the VirtualBox process to the host kernel, but decided to publish the draft as is.
IFF Assessment
The post describes a vulnerability that can be exploited to escape a virtual machine, which is detrimental to security.
Severity
Defender Context
Although the post refers to a vulnerability from 2017, defenders should still be aware of the described techniques. While CVE-2017-3558 is patched, the described methodology might inform future exploitation attempts. Understanding historical vulnerabilities can aid in proactively identifying and mitigating similar weaknesses in current systems.