Hi all,
Just to give a baseline, I'm particularly concerned with the vSphere ESXi 4.1 architecture...
I've been doing some light reading about hypervisor exploits, and one of the more prominent ones from the past are vm escapes. I'm just trying to get a feel for the worst case impact of an exploit of this type. Is it DDoS only? With this type of exploit, is there a potential risk of bridging together and/or siphoning data from another guest on the same host? Unfettered access to storage via the host VMKs?
I know the question seems a bit broad and worst case. I'm just interested to know what type of actual risk there is behind such an attack.
Going back to 2009, this one states "unauthorized disclosure of information", but is vague as to what the scope of that information is.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-1244
Thanks in advance.