Full Disclosure mailing list archives
Re: Virtual Machine Trojans: a new type of threat?
From: Peter Ferrie <peter.ferrie () gmail com>
Date: Fri, 17 Apr 2009 14:09:51 -0700
When a user downloads a virtual machine from the Internet, and then runs it on his/her computer, the antivirus installed in the host machine simply does not have access to the virtual machine, so the virtual machine does not get scanned.
That is simply not true. AVs can see inside VM images, and scan the files. The user can also install the AV inside the VM, which will also see the files. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Virtual Machine Trojans: a new type of threat? sergio (Apr 17)
- Re: Virtual Machine Trojans: a new type of threat? Peter Ferrie (Apr 17)
- Re: Virtual Machine Trojans: a new type of threat? Julio César García Vizcaíno (Apr 17)
- Re: [inbox] Re: Virtual Machine Trojans: a new type of threat? Exibar (Apr 18)
- <Possible follow-ups>
- Re: Virtual Machine Trojans: a new type of threat? sergio (Apr 18)
- Re: Virtual Machine Trojans: a new type of threat? sergio (Apr 18)
- Re: Virtual Machine Trojans: a new type of threat? Pavel Kankovsky (Apr 19)
- Re: Virtual Machine Trojans: a new type of threat? Eduardo_Godinho (Apr 19)
- Re: Virtual Machine Trojans: a new type of threat? Pavel Kankovsky (Apr 19)
- Re: Virtual Machine Trojans: a new type of threat? Peter Ferrie (Apr 17)