I have reverse-engineered @VMWare@twitter.com's patch for the vuln in VMWare ESXi that was exploited at @GeekPwn@twitter.com 2018 to take it down for the first time. It's an uninitialized stack variable usage RCE in the host-side code of vmxnet3 network adapter. Binary diff via Workstation 15.0.0/15.0.1
The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!