Highly Anticipated Linux Flaw Allows Remote Code Execution, but Less Serious Than Expected

A researcher has disclosed the details of an unpatched vulnerability that was expected to pose a serious threat to many Linux systems.
The post Highly Anticipated Linux Flaw Allows Remote Code Execution, but Less Serious Than Expected appeared first on… Continue reading Highly Anticipated Linux Flaw Allows Remote Code Execution, but Less Serious Than Expected

Critical PPP Daemon Flaw Opens Most Linux Systems to Remote Hackers

The US-CERT today issued advisory warning users of a new dangerous 17-year-old remote code execution vulnerability affecting the PPP daemon (pppd) software that comes installed on almost all Linux based operating systems, as well as powers the firmware… Continue reading Critical PPP Daemon Flaw Opens Most Linux Systems to Remote Hackers

Sudo Bug Lets Non-Privileged Linux and macOS Users Run Commands as Root

Joe Vennix of Apple security has found another significant vulnerability in sudo utility that under a specific configuration could allow low privileged users or malicious programs to execute arbitrary commands with administrative (‘root’) privileges on… Continue reading Sudo Bug Lets Non-Privileged Linux and macOS Users Run Commands as Root

KDE Linux Desktops Could Get Hacked Without Even Opening Malicious Files

If you are running a KDE desktop environment on your Linux operating system, you need to be extra careful and avoid downloading any “.desktop” or “.directory” file for a while.

A cybersecurity researcher has disclosed an unpatched zero-day vulnerabili… Continue reading KDE Linux Desktops Could Get Hacked Without Even Opening Malicious Files

Linux Botnet Adding BlueKeep-Flawed Windows RDP Servers to Its Target List

Cybersecurity researchers have discovered a new variant of WatchBog, a Linux-based cryptocurrency mining malware botnet, which now also includes a module to scan the Internet for Windows RDP servers vulnerable to the Bluekeep flaw.

BlueKeep is a highl… Continue reading Linux Botnet Adding BlueKeep-Flawed Windows RDP Servers to Its Target List

Your Linux Can Get Hacked Just by Opening a File in Vim or Neovim Editor

Linux users, beware!

If you haven’t recently updated your Linux operating system, especially the command-line text editor utility, do not even try to view the content of a file using Vim or Neovim.

Security researcher Armin Razmjou recently discovere… Continue reading Your Linux Can Get Hacked Just by Opening a File in Vim or Neovim Editor

Critical RCE Flaw in Linux APT Allows Remote Attackers to Hack Systems

Just in time…

Some cybersecurity experts this week arguing over Twitter in favor of not using HTTPS and suggesting software developers to only rely on signature-based package verification, just because APT on Linux also does the same.

Ironically, a s… Continue reading Critical RCE Flaw in Linux APT Allows Remote Attackers to Hack Systems

Warning! Unprivileged Linux Users With UID > INT_MAX Can Execute Any Command

Hold tight, this may blow your mind…

A low-privileged user account on most Linux operating systems with UID value anything greater than 2147483647 can execute any systemctl command unauthorizedly—thanks to a newly discovered vulnerability.

The repor… Continue reading Warning! Unprivileged Linux Users With UID > INT_MAX Can Execute Any Command

New Privilege Escalation Flaw Affects Most Linux Distributions

An Indian security researcher has discovered a highly critical flaw in X.Org Server package that impacts OpenBSD and most Linux distributions, including Debian, Ubuntu, CentOS, Red Hat, and Fedora.

Xorg X server is a popular open-source implementation… Continue reading New Privilege Escalation Flaw Affects Most Linux Distributions

CVE-2018-14665: Xorg Vulnerability Affects Both Linux and BSD Systems

Linux and BSD systems face a critical risk as a Xorg vulnerability has been found. This is the main display server which is used to provide the graphics engine. The issue is tracked in the CVE-2018-14665 advisory and is related…Read more
The post CVE… Continue reading CVE-2018-14665: Xorg Vulnerability Affects Both Linux and BSD Systems