Veeam 0-day Vulnerability Discovery - Security Affairs

On October 9, 2015, the specialized portal Security Affairs, directed by Pierluigi Paganini, published a technical article on the 0-day vulnerability discovered in the VeeamVixProxy component, part of the Veeam Backup & Replication suite. The discovery is attributed to Pasquale “sid” Fiorillo, Francesco “ascii” Ongaro of ISGroup SRL, and Antonio “s4tan” Parata of the USH team. The article, based on the official advisory published on the same date, described a serious privilege escalation problem in VMware and Hyper-V virtualized environments. Ongaro is also cited as the author of the research and presented as Senior Security Researcher at ISGroup.