This talk will discuss some ways to gain control over the virtual infrastructure through vCenter’s services. I will describe a few non-dangerous bugs (they were 0-days when we found them), but if we can use all of them together, we will get administrative access to vCenter which means to the whole virtual network.

Author: Alexander Minozhenko

Presentation “How to Hack VMware vCenter Server in 60 Seconds” from DEFCON 2012.