VM Escape Case Study: VirtualBox Bug Hunting and Exploitation
A practical case study in hunting and exploiting VM escape vulnerabilities in VirtualBox.
IDSECCONF 2021
Talk delivered at IDSECCONF 2021 (Indonesia, December 2021). The presentation walks through a complete VM escape case study targeting Oracle VirtualBox: how target areas were selected, how bugs were discovered through code review and dynamic analysis, and how findings were chained into a working exploit.