Virtual Machines:Os exploitations.

[Mr_Grey]

Working on a theory in the usage and defense of Virtual Machines. It seems that since a virtual OS is isolated from the original computer, people have been using it to make a simple "Disposable" OS. Writing a virus to this type of setup is moot, due to the os simply being destroyed upon logout, and then remade whenever they wish it so.
The question is, has anyone found potential exploits to subvert the virtual OS and attack the original, so as to avoid the shield.
This is not a question as to the application of the virus, but to find potential holes within the usage so they may be blocked, I find it to be a nice challenge to look around to eh?

Whats your thoughts? Figured a way around it? Gimme your opinion.

[fashizzlepop]

I figure it's definitely possible, but it would be very tricky. I would guess that you would need to find a flaw in the virtualization software. Ie. VirtualBox or vmplayer.

The problem is it would only be specific to those running virtually which is a very small percentage of private use.

[thetan]

The hypervisor takes on the role of the super user. Find an exploit in the hypervisor and instead of being the super for 1 machine, you're basically god for X number of virtual machines.

Hardware virtualization technology has been taken advantage of by root kits and malware too, http://en.wikipedia.org/wiki/Blue_Pill_(malware)