Security News > 2023 > October > Exploits released for Linux flaw giving root on major distros

Exploits released for Linux flaw giving root on major distros
2023-10-05 19:44

Proof-of-concept exploits have already surfaced online for a high-severity flaw in GNU C Library's dynamic loader, allowing local attackers to gain root privileges on major Linux distributions.

One of these PoC exploits, confirmed as working by vulnerability and exploit expert Will Dormann, was released by independent security researcher Peter Geissler earlier today.

"Although we are withholding our exploit code for now, the ease with which the buffer overflow can be transformed into a data-only attack implies that other research teams could soon produce and release exploits. This could put countless systems at risk, especially given the extensive use of glibc across Linux distributions."

New 'Looney Tunables' Linux bug gives root on major distros.

Exploit released for critical VMware SSH auth bypass vulnerability.

Exploit released for Microsoft SharePoint Server auth bypass flaw.


News URL

https://www.bleepingcomputer.com/news/security/exploits-released-for-linux-flaw-giving-root-on-major-distros/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Linux 17 374 2505 1534 665 5078