Joe Rosato via plug on 14 Oct 2019 16:58:49 -0700


[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

[PLUG] Sudo flaw

The Hacker News (@TheHackersNews) tweeted at 2:32 PM on Mon, Oct 14, 2019:
🔥 CVE-2019-14287

A flaw in Sudo—that comes installed on almost every #Linux OS—could let users run commands as "root" even when they're restricted.

Details ➤ https://t.co/NeFvITBR73

How? Just by specifying user ID "-1" or "4294967295" in the command instead of the root. https://t.co/zlvC7PSYrI
(https://twitter.com/TheHackersNews/status/1183812855612596225?s=03)

Get the official Twitter app at https://twitter.com/download?s=13
___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug