Multiple experts released exploits for Linux local privilege escalation flaw Looney Tunables | allinfosecnews.com

Oct. 6, 2023, 1:50 p.m. | Pierluigi Paganini

Security Affairs securityaffairs.co

Researchers published PoC exploits for CVE-2023-4911 vulnerability (aka Looney Tunables) impacting most popular Linux distributions. The vulnerability CVE-2023-4911 (CVSS score 7.8) is a buffer overflow issue that resides in the GNU C Library’s dynamic loader ld.so while processing the GLIBC_TUNABLES environment variable. An attacker can trigger the vulnerability to execute code with elevated privileges. “A […]

The post Multiple experts released exploits for Linux local privilege escalation flaw Looney Tunables appeared first on Security Affairs.

attacker breaking news buffer buffer overflow cve cvss distributions dynamic environment environment variable escalation experts exploits flaw gnu hacking information security news issue it information security library linux linux distributions loader local local privilege escalation looney tunables overflow pierluigi paganini poc popular privilege privilege escalation privilege escalation flaw researchers score security trigger tunables variable vulnerability

More from securityaffairs.co / Security Affairs

Muddling Meerkat, a mysterious DNS Operation involving China’s Great Firewall 5 hours ago | securityaffairs.co

apt bypass china china great firewall +21

Notorious Finnish Hacker sentenced to more than six years in prison 16 hours ago | securityaffairs.co

aleksanteri kivimäki breaking news center cyber crime +17

CISA guidelines to protect critical infrastructure against AI-based threats 20 hours ago | securityaffairs.co

agency ai ai risks analysis +27

NCSC: New UK law bans default passwords on smart devices 1 day, 6 hours ago | securityaffairs.co

april ban bans breaking news +29

The FCC imposes $200 million in fines on four US carriers for unlawfully sharing user … 1 day, 8 hours ago | securityaffairs.co

access breaking news carriers communications +19

Google prevented 2.28 million policy-violating apps from being published on Google Play in 2023 1 day, 17 hours ago | securityaffairs.co

android apps breaking news google +14

Financial Business and Consumer Solutions (FBCS) data breach impacted 2M individuals 2 days ago | securityaffairs.co

agency breach breaking news business +23

Cyber-Partisans hacktivists claim to have breached Belarus KGB 2 days, 4 hours ago | securityaffairs.co

access agency belarus belarus kgb +21

The Los Angeles County Department of Health Services disclosed a data breach 2 days, 5 hours ago | securityaffairs.co

breach breaking news cyber crime cybercrime +16

Senior Security Researcher

@ Microsoft | Redmond, Washington, United States

View on infosec-jobs.com

Sr. Cyber Risk Analyst

@ American Heart Association | Dallas, TX, United States

View on infosec-jobs.com

Cybersecurity Engineer 2/3

@ Scaled Composites, LLC | Mojave, CA, US

View on infosec-jobs.com

Information Security Operations Manager

@ DP World | Charlotte, NC, United States

View on infosec-jobs.com

Sr Cyber Security Engineer I

@ Staples | Framingham, MA, United States

View on infosec-jobs.com

Security Engineer - Heartland (Remote)

@ GuidePoint Security LLC | Remote in the US

View on infosec-jobs.com