Ticket #2617 (closed defect: fixed)
int 1 in ring-3 in guest OS crashes VirtualBox on host -> fixed in SVN
| Reported by: | pdeboer | Owned by: | |
|---|---|---|---|
| Component: | other | Version: | VirtualBox 2.0.4 |
| Keywords: | DoS crash | Cc: | |
| Guest type: | Windows | Host type: | Linux |
Description
Using the int 1 instruction \xf1 crashes virtual box.
Example code: int main () {
unsigned char buf = '\xf1'; void (*f)() = (void (*)(void))&buf; f();
}
Using the 'normal' way of calling an interrupt, '\xcd\x01' does not result in a crash.
Attachments
-
VBox.log
(165.5 KB) -
added by pdeboer 10 years ago.
-
vbcrash.exe
(7.0 KB) -
added by pdeboer 10 years ago.
- PoC VirtualBox crash tool
Change History
comment:2 in reply to: ↑ description Changed 10 years ago by pdeboer
Sorry, friday-afternoon brain lag..
VirtualBox itself does not crash, only the guest OS gets into a 'stuck' state and a VB pop-up gives the option to debug the guest OS or stop it.
comment:3 Changed 10 years ago by sandervl73
I can't reproduce this here. Could you try again with 2.0.6?
comment:4 Changed 10 years ago by pdeboer
It still crashes 2.0.6. I've attached the Windows executable I'm using.
The problem only seems to exist when 'VT-x/AMD-V' is turned on for this VM. The host system has a Core2Duo (T8300) processor.
Note: See
TracTickets for help on using
tickets.
Please attach your VBox.log.