Ubuntu 22.04.1 X64 Desktop Enlightenment 0.25.3-1 Privilege Escalation | allinfosecnews.com

Oct. 5, 2022, 2:39 p.m. |

Packet Storm packetstormsecurity.com

This Metasploit module exploits a command injection within Enlightenment's enlightenment_sys binary. This is done by calling the mount command and feeding it paths which meet all of the system requirements, but execute a specific path as well due to a semi-colon being used. This module was tested on Ubuntu 22.04.1 X64 Desktop with enlightenment 0.25.3-1 (current at module write time).

escalation privilege privilege escalation ubuntu x64

More from packetstormsecurity.com / Packet Storm

Ubuntu Security Notice USN-6757-2 1 day, 14 hours ago | packetstormsecurity.com

arbitrary code attacker code crash +16

Ubuntu Security Notice USN-6762-1 1 day, 14 hours ago | packetstormsecurity.com

arbitrary code attacker attackers code +15

SOPlanning 1.52.00 SQL Injection 1 day, 14 hours ago | packetstormsecurity.com

injection php projects sql +5

SOPlanning 1.52.00 Cross Site Request Forgery 1 day, 14 hours ago | packetstormsecurity.com

forgery php request version +2

SOPlanning 1.52.00 Cross Site Scripting 1 day, 14 hours ago | packetstormsecurity.com

cross site scripting php scripting version +2

Red Hat Security Advisory 2024-2679-03 1 day, 14 hours ago | packetstormsecurity.com

advisory enterprise free linux +7

Red Hat Security Advisory 2024-2674-03 1 day, 14 hours ago | packetstormsecurity.com

advisory enterprise kernel linux +5

Red Hat Security Advisory 2024-2071-03 1 day, 14 hours ago | packetstormsecurity.com

advisory bugs container fix +10

Red Hat Security Advisory 2024-2068-03 1 day, 14 hours ago | packetstormsecurity.com

advisory bugs container denial of service +13

Technical Senior Manager, SecOps | Remote US

@ Coalfire | United States

View on infosec-jobs.com

Global Cybersecurity Governance Analyst

@ UL Solutions | United States

View on infosec-jobs.com

Security Engineer II, AWS Offensive Security

@ Amazon.com | US, WA, Virtual Location - Washington

View on infosec-jobs.com

Senior Cyber Threat Intelligence Analyst

@ Sainsbury's | Coventry, West Midlands, United Kingdom

View on infosec-jobs.com

Embedded Global Intelligence and Threat Monitoring Analyst

@ Sibylline Ltd | Austin, Texas, United States

View on infosec-jobs.com

Senior Security Engineer

@ Curai Health | Remote

View on infosec-jobs.com