- May 7, 2002
- 10,376
- 762
- 126
Ouch!
They were using VMware's Workstation virtual machine.
They scored the hat trick!
They were using VMware's Workstation virtual machine.
They scored the hat trick!
https://arstechnica.com/security/20...iting-edge-browser-fetches-105000-at-pwn2own/"We used a JavaScript engine bug within Microsoft Edge to achieve the code execution inside the Edge sandbox, and we used a Windows 10 kernel bug to escape from it and fully compromise the guest machine," Qihoo 360 Executive Director Zheng Zheng wrote in an e-mail. "Then we exploited a hardware simulation bug within VMware to escape from the guest operating system to the host one. All started from and only by a controlled a website."