chkrootkit local root vulnerability

HostT

• June 08, 2014 15:19

FYI [url=https://display/knowledge-baseAdditional+Security+Software]Additional Security Software [url=http://cxsecurity.com/issue/WLB-2014060034]chkrootkit local root vulnerability - CXSecurity.com

• 

  Ekushey

  • June 09, 2014 04:32

  Wow, interesting. Using chkrootkit to gain root. :p

  0
• 

  cPanelMichael

  • June 09, 2014 15:45

  Hello :) Note that this reports suggests that certain configurations are required for this attack to be effective. For instance, /tmp must not be mounted noexec for this to work, according to the report. Thank you.

  0
• 

  Ekushey

  • June 09, 2014 15:56

  [quote="cPanelMichael, post: 1660661">Note that this reports suggests that certain configurations are required for this attack to be effective. For instance, /tmp must not be mounted noexec for this to work, according to the report.
  Yes that's a relief. :)

  0
• 

  quizknows

  • June 09, 2014 17:57

  cpanels securetmp script takes care of this, and all the centOS / cPanel servers I checked would not allow execution of files directly from tmp. Definitely worth checking your own setups though.

  0

Please sign in to leave a comment.