A significant new vulnerability has been unearthed in the Linux kernel, dubbed 'pedit', which allows attackers to gain root privileges on compromised systems. This exploit leverages a clever technique of poisoning the cache of binary files, effectively tricking the system into executing malicious code with elevated permissions.
The 'pedit' exploit specifically targets the Copy-on-Write (COW) mechanism, a memory management feature in Linux. By manipulating how the kernel handles shared memory pages that are modified, an attacker can cause the system to overwrite critical binaries. When these poisoned binaries are later accessed, the system executes the attacker's payload instead of the legitimate program. This is particularly concerning as it bypasses standard security measures that rely on the integrity of system binaries.
The researchers who discovered this vulnerability highlight that while the exploit requires specific conditions to be met, such as having a limited user account on the target system, its potential impact is severe. Gaining root access means an attacker can have complete control over the system, including installing malware, stealing sensitive data, or disrupting services. The exploit is actively being discussed within the cybersecurity community, and patches are expected to be released to address this critical flaw in the Linux kernel.
Fuente Original: https://thehackernews.com/2026/06/new-linux-pedit-cow-exploit-enables.html
Artículos relacionados de LaRebelión:
- Linux Foundation Unveils Akrites for AI Security
- Vulnerabilidad Zero-Day en Cisco SD-WAN Permite Acceso Root
- Exploit Imparcheable usbliter8 Compromete Chips Apple A12-A13
- G7 Seeks Trusted Partner Access to Top US AI
- Arch Linux Security Breach 1579 Packages Compromised
Artículo generado mediante LaRebelionBOT
No hay comentarios:
Publicar un comentario