Home > Computer, Security > Unbelievably simple bug in FreeBSD which gives untrusted root access

Unbelievably simple bug in FreeBSD which gives untrusted root access

December 2nd, 2009 oDx Leave a comment Go to comments

A security bug in the latest version of FreeBSD can be exploited to grant unprivileged users complete control over the operating system, a German researcher said Monday. The exploit was discovered and exploited by Nikolaos Rangos also known as Kingcope.

This was disclosed in the Full Disclosure Mailing List him. Shortly after this disclosure, other researchers said they were able to confirm the bug.

The bug resides in FreeBSD’s run-time link editor. A binary run by an unprivileged user can be executed with administrative privileges in a restricted environment.

A security advisory containing a “not fully developed” patch for this has been posted in FreeBSD mail Archive.

You can see it here.

  • Share/Bookmark

Related posts:

  1. Bypass blocked website with a simple trick – No proxy needed
  2. First Windows 7 zero day exploit found
  3. How to Access Linux Partitions from Windows OS

Related posts brought to you by Yet Another Related Posts Plugin.

Categories: Computer, Security Tags: , , , , ,
  1. bob
    December 2nd, 2009 at 10:22 | #1
    Reply | Quote

    linux and simple exploit..
    wow.. :|

  2. mmnicolas
    December 7th, 2009 at 21:08 | #2
    Reply | Quote

    He said FreeBSD, not linux, not even the *BSDs, only FreeBSD. It probably has been fixed with a temporary workaround within seconds for important servers, as for the FreeBSD desktop users, they usually don’t offer user accounts to the public, so it does not really affect them.

  1. No trackbacks yet.
Contact Us

*required fields

Thank you. Your message has been sent.
There was an error while sending your message. Please try again later.
Plugin by psd to wordpress Solutions.