- What do the Statistics say about Mobile App Development Growth in 2023
- Benefits of Promoting Your Business Using Mobile Games
- Find the Popular Frameworks in the Market Used for Mobile App Development
- Metaverse and Its Five Essential Features
- Watch Out For the Ruling Trends in Mobile Game App Development
- Essential Tips to Help You Create Successful Game Apps
- Fintech vs Techfin: Where Does the Future of Banking Lies?
- Vulnerability Management Process: The Crucial Way to Maintain Your Cyber Security Posture
- Why React Native Framework is the Right Choice for Hybrid App Development
- Why Do You Need Financial Software Development Service for Your Business
- Importance of Fintech Solutions in This Digital Age
- Learn Why it Important To Integrate Content Marketing & SEO
- How Mobile Apps Are Making A Difference in Real Estate Industry
- 10 Useful Tips to Create Highly Engaging Social Media Content
- Building A Website Gets Easy Without Coding
- Five Main Stages of Game Development
- Top SEO Trends You Must Follow in 2022
- Things to Learn for High-End App Development in 2022
- The Right Strategy to Make Your Mobile App Equipped with Sound Social Networking Tools
- 6 Common Mistakes in Ecommerce Website Development To Avoid
- The Year 2021 and The Challenges In Cybersecurity Industry
- Top Benefits of Having an Impactful UI/ UX Design For Your App
- Useful SEO Tips For Small Businesses Website Optimization
- Know The Different Channels Important To Build Your Online Reputation
- Structured Data: An Important Tool in SEO to Mark Strong Online Presence
- Learn the Different Strategies to Use for B2B Lead Generation in Digital Marketing
- Things to Consider Before Launching Your App in Google Play Store
- Google’s Page Experience Update Now Fully Rolled Out- Here’s What You Can Expect
- 7 Useful Tips to Ensure the Best Android App Development
- Learn Professional Web Development Tips to Build an Efficient Website
- Learn the Effective Ways to Manage Your Online Reputation
- Three Principles Every User Experience Designers Should Follow
- Top 5 Benefits of Integrating Cyber Security Services with Your Business
- Google’s New Safeguards for Minors to Create Safer Space on the Internet
- Benefits of Android Game Development You Must Not Ignore
- Google Removes Safe Browsing and Ad Experience Widgets from Page Experience Ranking Signal Criteria
- Google Changes Eligibility for Fact Check Rich Results
- Why You Need To Hire an Online Reputation Management Company for Your Business
- Complete Guide on 2d and 3d Game Development
- MITRE Engenuity releases first ATT&CK evaluations for Industrial Control Systems Security Tools
- WordPress SEO: 3 Quick and Easy Hacks for PageSpeed & Core Web Vitals
- Researchers Reveal New Trick of Hackers to Disable Macro Security Warnings in Malicious Office Files
- Top PHP Development Tools Leading Website Development Company Uses
- Cloud Security Analysis Solutions: The Next Step to Make Your Data Secure
- Learn How to Optimize Your Site for Google’s Page Experience Update
- Amid Rising Cybersecurity Threat Indian Military Personnel to Get Trained in the US on Cyber Warfare
- How the Network Change in Pandemic Steered to Must Cybersecurity
- 7 Reason You Should Get Mobile App for Your Business
- Google Rolls Out New Spam Algorithm Update: What Changes You Can Expect
- Top 10 Benefits of Unity Game Development
- VPN Attacks: A Rising Threat for Remote Work in the COVID-19 Era
- Google Releases New Framework to Prevent Software Supply Chain Attacks
- GitHub Discloses Details of Easy-to-Exploit Linux Vulnerability
- Read Key Highlights of Google Ads API version 8.0
- Here How the Gaming Giant EA was Hacked
- Know How A Malvertising Campaign On Google Distributed Trojanized AnyDesk Installer
- Learn How to Find the Best UI/UX Development Company
- Trends of 2021 Every Top Cyber Security Company in India Follows
- Improve your Conversion Rate with 10 Essential Elements of Good SEO
- Google Announces New Features for App Advertisers to Improve ROI
- FragAttacks: Set of New Vulnerabilities that Expose Nearly All Wi-Fi Devices to Attacks
- Latest Technologies and Trends in Mobile Game App Development
- Babuk – How a Newcomer soon becomes a Growing Ransomware Threat
- 5 Characteristics of the Best Digital Marketing Services Provider
- Here are the Tips to Choose the Best Game App Development Company
- 7 Reasons to do Search Engine Optimization for your Website
- Integrating AI with Cyber Security – Tomorrow of Cyber Security
- How Much Does HIPAA Compliance Cost?
- Best Android Game App Development Company Doesn’t Miss out Following Features
- Effective Voice Search Statistics for 2020
- Android 10: Everything You Need to Know
- How to Make Massive Money with Mobile Apps In 2020
- Drastic boost in mobile gaming during coronavirus lockdown
- Cyber security – A Tool to Address Digital World’s Major Issues; Cyber Attack
- 5 facts to keep in mind before hiring Game app development Company in India.
- Best iOS games app development
GitHub Discloses Details of Easy-to-Exploit Linux Vulnerability
There’s another revelation last week in the cyber industry, GitHub has disclosed the details of a Linux vulnerability that is quite easy to exploit. It can be leveraged to escalate privileges to root on the targeted system.
The indicated flaw has been classified as high severity and tracked as CVE-2021-3560. It impacts polkit that is an authorization service present by default in many Linux distributions.
Kevin Backhouse, a member of the GitHub Security Lab has discovered this loophole in security, who later shared his research by publishing a blog post covering the entire detail of his findings. He even shared a video that shows the exploit in action. There are lots of attention-grabbing things to know about this disclosure that may leave you surprised.
Here you can read the key highlights from the research findings of Backhouse that explains the detected flaw in Linux distribution.
Typically, systemd uses polkit, so any Linux distribution using systemd also uses polkit. And, while carrying out his core job of finding and reporting vulnerabilities to help improve the security of open-source software, Backhouse found privilege escalation vulnerability in polkit.
“A few weeks ago, I found a privilege escalation vulnerability in polkit. I coordinated the disclosure of the vulnerability with the polkit maintainers and with Red Hat’s security team. It was publicly disclosed, the fix was released on June 3, 2021, and it was assigned CVE-2021-3560.”
The vulnerability has been confirmed to impact some versions of Red Hat Enterprise Linux, Fedora, Debian and Ubuntu. Backhouse underlined that the vulnerability is easy to exploit with a few standard command line tools. Even a local, unprivileged attacker is said to be capable of using the flaw to escalate privileges to root shell on the system with commands executed in the terminal.
The most unexpected fact indicated in this discovery is that the bug is not new and has a historical background.
“The bug I found was quite old,” Backhouse said. “It was introduced seven years ago in commit bfa5036 and first shipped with polkit version 0.113. However, many of the most popular Linux distributions didn’t ship the vulnerable version until more recently.”
However, the history of this bug is slightly different on Debian and its derivatives (such as Ubuntu). The bug in the Debian fork was introduced in commit f81d021 and first shipped with version 0.105-26. Further in the research, it was found that that the most recent stable release of Debian, Debian 10 (“buster”), uses version 0.105-25, which signals that it is not vulnerable. However, some Debian derivatives are vulnerable, such as Ubuntu that is based on Debian unstable.
The vulnerable component, polkit, is a system service designed to control system-wide privileges. It provides a way for non-privileged processes for communicating with privileged processes.
According to Backhouse, it is a service that is more like a judge that determines whether an action initiated by a user requiring higher privileges can be further carried out directly or requires additional authorization.
“It essentially plays the role of a judge. If you want to do something that requires higher privileges—for example, creating a new user account—then it’s polkit’s job to decide whether or not you’re allowed to do it. For some requests, polkit will make an instant decision to allow or deny, and for others, it will pop up a dialog box so that an administrator can grant authorization by entering their password,” Backhouse said.
The discovered vulnerability though easy to exploit with just a few commands in the terminal typically takes a few attempts for the exploit to be successful. This is due to some timing requirements.
While explaining the polkit architecture, Backhouse specified that dbus-daemon, controlling all the communications, plays a very important role in the security of polkit. dbus-daemon also assigns every connection a “unique bus name:” typically something like “:1.96”. It is capable of handling situations where polkit asks for the UID of connection :1.96, but connection :1.96 no longer exists, by returning an error. But here it appeared that polkit could not handle the error.
Backhouse explained, “polkit mishandles the error in a particularly unfortunate way: rather than rejecting the request, it treats the request as though it came from a process with UID 0. In other words, it immediately authorizes the request because it thinks the request has come from a root process.”
However, he also highlighted the reason why this loophole was not detected in the past seven years. He said, “To trigger the vulnerable codepath, you have to disconnect at just the right moment. And because there are multiple processes involved, the timing of that “right moment” varies from one run to the next. That’s why it usually takes a few tries for the exploit to succeed. I’d guess it’s also the reason why the bug wasn’t previously discovered. If you could trigger the vulnerability by killing the dbus-send command immediately, then I expect it would have been discovered a long time ago, because that’s a much more obvious thing to test for.”
“CVE-2021-3560 enables an unprivileged local attacker to gain root privileges. It’s very simple and quick to exploit, so it’s important that you update your Linux installations as soon as possible. Any system that has polkit version 0.113 (or later) installed is vulnerable. That includes popular distributions such as RHEL 8 and Ubuntu 20.04,” Backhouse concluded.