#dirtypipe — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #dirtypipe, aggregated by home.social.
-
Come funzionano le vulnerabilità di #PrivilegeEscalation #Linux basate su corruzione della Cache? (#CopyFail, #DirtyFrag, #DirtyPipe)
-
Come funzionano le vulnerabilità di #PrivilegeEscalation #Linux basate su corruzione della Cache? (#CopyFail, #DirtyFrag, #DirtyPipe)
-
Come funzionano le vulnerabilità di #PrivilegeEscalation #Linux basate su corruzione della Cache? (#CopyFail, #DirtyFrag, #DirtyPipe)
-
Come funzionano le vulnerabilità di #PrivilegeEscalation #Linux basate su corruzione della Cache? (#CopyFail, #DirtyFrag, #DirtyPipe)
-
Come funzionano le vulnerabilità di #PrivilegeEscalation #Linux basate su corruzione della Cache? (#CopyFail, #DirtyFrag, #DirtyPipe)
-
La faille du jour sous Linux : #DirtyFrag
https://github.com/V4bel/dirtyfrag
Grosse faille (à la suite de #DirtyPipe et #CopyFail) !Malheureusement, à cause de la rupture d'embargo, il n'y a pas encore de patchs disponibles !!!
Le mieux est de supprimer les modules concernés :
sh -c "printf 'install esp4 /bin/false
install esp6 /bin/false
install rxrpc /bin/false
' > /etc/modprobe.d/dirtyfrag.con… -
La faille du jour sous Linux : #DirtyFrag
https://github.com/V4bel/dirtyfrag
Grosse faille (à la suite de #DirtyPipe et #CopyFail) !Malheureusement, à cause de la rupture d'embargo, il n'y a pas encore de patchs disponibles !!!
Le mieux est de supprimer les modules concernés :
sh -c "printf 'install esp4 /bin/false
install esp6 /bin/false
install rxrpc /bin/false
' > /etc/modprobe.d/dirtyfrag.con… -
La faille du jour sous Linux : #DirtyFrag
https://github.com/V4bel/dirtyfrag
Grosse faille (à la suite de #DirtyPipe et #CopyFail) !Malheureusement, à cause de la rupture d'embargo, il n'y a pas encore de patchs disponibles !!!
Le mieux est de supprimer les modules concernés :
sh -c "printf 'install esp4 /bin/false
install esp6 /bin/false
install rxrpc /bin/false
' > /etc/modprobe.d/dirtyfrag.con… -
La faille du jour sous Linux : #DirtyFrag
https://github.com/V4bel/dirtyfrag
Grosse faille (à la suite de #DirtyPipe et #CopyFail) !Malheureusement, à cause de la rupture d'embargo, il n'y a pas encore de patchs disponibles !!!
Le mieux est de supprimer les modules concernés :
sh -c "printf 'install esp4 /bin/false
install esp6 /bin/false
install rxrpc /bin/false
' > /etc/modprobe.d/dirtyfrag.con… -
La faille du jour sous Linux : #DirtyFrag
https://github.com/V4bel/dirtyfrag
Grosse faille (à la suite de #DirtyPipe et #CopyFail) !Malheureusement, à cause de la rupture d'embargo, il n'y a pas encore de patchs disponibles !!!
Le mieux est de supprimer les modules concernés :
sh -c "printf 'install esp4 /bin/false
install esp6 /bin/false
install rxrpc /bin/false
' > /etc/modprobe.d/dirtyfrag.con… -
https://www.europesays.com/be-nl/54801/ Linux-distributies wereldwijd in het vizier van Copy Fail-exploit #BE #België #Belgium #CopyFail #CVE202631431 #DirtyPipe #kwetsbaarheid #Linux #LinuxKernel #Science #ScienceAndTechnology #ScienceAndTechnology #Technologie #Technology #Wetenschap #WetenschapEnTechnologie #WetenschapTechnologie
-
Happy Monday everyone!
We are going to start this week off with a nice resource in our #readoftheday! If you have yet to hear about Wazuh, now is your chance! It is a free, open-source security platform that protects data assets from threats [2]. In this article, the researchers cover what abusing Living-off-the-Land binaries (LOLBINs) looks like from the perspective of an Ubuntu and Kali Linux endpoint and focus on the #DirtyPipe exploit and the DDexec utility. After walking readers through the emulation they then discuss how Wazuh helps detect these techniques. It is a good read and a resource I want to get into my own lab to start playing with!
As always, check out the full article and others by Wazuh researchers on their blog and stay tuned for the threat hunting tip of the day! Enjoy and Happy Hunting!
Detecting Living Off the Land attacks with Wazuh
https://wazuh.com/blog/detecting-living-off-the-land-attacks-with-wazuh/Other reference:
https://github.com/wazuh/wazuh [2]Intel 471 #CyberSecurity #ITSecurity #InfoSec #BlueTeam #ThreatIntel #ThreatHunting #ThreatDetection #HappyHunting #Intel471
-
Very cool writeup about the dirty pipe vulnerability (cve-2022-0847) by Valentin Obst and Martin Clauß
https://lolcads.github.io/posts/2022/06/dirty_pipe_cve_2022_0847/
-
📬 8 Jahre alte Schwachstelle wurde im Linux Kernel gefunden
#Artikel #Hacking #Softwareentwicklung #CVE20222588 #DirtyCred #DirtyPipe #Linux #LinuxKernel #Schwachstelle #vulnerability https://tarnkappe.info/artikel/schwachstelle-im-linux-kernel-gefunden-254637.html -
Researcher uses Dirty Pipe exploit to fully root a Pixel 6 Pro and Samsung S22 - Enlarge (credit: Getty Images)
A researcher has successfully u... - https://arstechnica.com/?p=1841295 #vulnerabilities #dirtypipe #exploits #android #biz&it #linux
-
This Week in Security: DDoS Techniques, Dirty Pipe, and Lapsus$ Continued - Denial-of-Service (DoS) amplification. Relatively early in the history of the Inte... - https://hackaday.com/2022/03/11/this-week-in-security-ddos-techniques-dirty-pipe-and-lapsus-continued/ #hackadaycolumns #securityhacks #cve-2022-0847 #dirtypipe #lapsus$ #news
-
This is a really good read about the #DirtyPipe #Linux #Vulnerability that caused a lot of #reboots yesterday: https://dirtypipe.cm4all.com/
-
Heute Abend Sonderschicht:
https://www.heise.de/news/Linux-Dirty-Pipe-beschert-Root-Rechte-6541556.html #Linux #itsec #dirtypipe -
Linux distros have patched "dirtypipe" vulnerability said to affect Android as well.
#News #Dirtypipe #Infosec #Cybersecurity #Linux #FOSS #Android
https://www.theregister.com/2022/03/08/in_brief_security/ -
Linux has been bitten by its most high-severity vulnerability in years - Enlarge (credit: Getty Images)
Linux has yet another high-seve... - https://arstechnica.com/?p=1838884 #vulnerabilities #dirtypipe #biz&it #linux
