Archive for the ‘user privilege’ Category

Warning! Unprivileged Linux Users With UID > INT_MAX Can Execute Any Command

December 6th, 2018
Hold tight, this may blow your mind… A low-privileged user account on most Linux operating systems with UID value anything greater than 2147483647 can execute any systemctl command unauthorizedly—thanks to a newly discovered vulnerability. The reported vulnerability actually resides in PolicyKit (also known as polkit)—an application-level toolkit for Unix-like operating systems that defines

Posted in Debian, linux, Linux Vulnerability, privilege escalation, Red Hat, Ubuntu, user privilege, Vulnerability | Comments (0)