Linux: Beep Command Can Be Used to Probe for the Presence of Sensitive Files
Linux: Beep Command Can Be Used to Probe for the Presence of Sensitive Files
Published on April 10, 2018 at 03:20PM
Catalin Cimpanu, writing for BleepingComputer: A vulnerability in the "beep" package that comes pre-installed with Debian and Ubuntu distros allows an attacker to probe for the presence of files on a computer, even those owned by root users, which are supposed to be secret and inaccessible. The vulnerability, tracked as CVE-2018-0492, has been fixed in recent versions of Debian and Ubuntu (Debian-based OS). At its core, the bug is a race condition in the beep utility that allows the OS to emit a "beep" sound whenever it is deemed necessary. Security researchers have discovered a race condition in the beep package that allows an attacker to elevate his code to root-level access.
Hope you like this please comment your view and share to your friends thanks for visiting bye guys meet you in next post
Published on April 10, 2018 at 03:20PM
Catalin Cimpanu, writing for BleepingComputer: A vulnerability in the "beep" package that comes pre-installed with Debian and Ubuntu distros allows an attacker to probe for the presence of files on a computer, even those owned by root users, which are supposed to be secret and inaccessible. The vulnerability, tracked as CVE-2018-0492, has been fixed in recent versions of Debian and Ubuntu (Debian-based OS). At its core, the bug is a race condition in the beep utility that allows the OS to emit a "beep" sound whenever it is deemed necessary. Security researchers have discovered a race condition in the beep package that allows an attacker to elevate his code to root-level access.
Read more of this story at Slashdot.
Hope you like this please comment your view and share to your friends thanks for visiting bye guys meet you in next post
Linux: Beep Command Can Be Used to Probe for the Presence of Sensitive Files
![Linux: Beep Command Can Be Used to Probe for the Presence of Sensitive Files]()
Reviewed by Kartik
on
April 10, 2018
Rating:
No comments: