After the discovery of the Heartbleed bug, security researchers have detected another critical vulnerability known as VENOM (Virtualised Environment Neglected Operations Manipulations). The vulnerability resides in open source computer emulator QEMU and dates back to 2004. Many modern virtualization platforms, including Xen, KVM, and Oracle’s VirtualBox are affected by the vulnerability. Most datacenters nowadays condense customers including major technology companies and smaller firms into virtualized machines, or multiple operating systems on one single server. Those virtualized systems are designed to share resources but remain as separate entities in the host hypervisor, which powers the virtual machines. Attacker can exploit the VENOM vulnerability to gain access to the entire hypervisor as well as every network connected device in that datacentre.
Mauritian Computer Emergency Response Team (CERT-MU)
National Computer Board
7th Floor, Stratton Court
La Poudriere Street