co296@xxxxxxx wrote: > ... in vmware user's .vmx file ... we change ... > ide1:0.fileName = AAAAA... it will cause a d0s ... I am confused: cannot you cause such a problem with any invalid filename? Where is the attack, if you had to have write access to the user's file? Can you have code execution (shellcode in that name, for VMware on UNIX where bits of it run as root)? Cheers, Paul Szabo psz@xxxxxxxxxxxxxxxxx http://www.maths.usyd.edu.au/u/psz/ School of Mathematics and Statistics University of Sydney Australia
