A new vulnerability that affects many Linux systems has been revealed: Pwnkit. This attack uses a vulnerability in polkitd to allow any user to escalate his privileges to root. There are patches for major Linux systems: see the LowEndTalk thread. Thanks to @FoxelVox for posting this on LET.
It’s important to note that the vulnerability can only be used by users logged into the system. You can’t launch this attack on just any Linux box you ping on the network.
I tested on my Debian 11 systems. I find that none of my remote VMs are running polkitd, which is a user privilege management tool (previously called PolicyKit), however all of my home systems are. On my VMs, without polkitd running, the attack compiles but doesn’t work. However, it works just fine where polkitd is running.
Patch your systems ASAP!
Related Posts:
- RackNerd Now Accepting Payments via USDT TRC-20, USDC-TRC20, TRX, BTC, LTC, ETH, and More Across Ethereum (ERC-20), Polygon, Solana, Tron (TRC-20) Networks - April 27, 2024
- Level Up Your Marketing and Social Media with These FREE Courses on Udemy! - April 26, 2024
- FLASH SALE: Cheap cPanel Shared Hosting from eWallHost for $7.97/YEAR! - April 24, 2024
Dear Dreadlord. Is this still a problem if I (to my knowledge) only have one user (root) i.e. me?! Web requests come in from the www-data user, though. Thank you. Jon.C.
No they must have a shell…unless they can trick your php app into executing something on the server…