Nine-year old Dirty COW bug gives attackers full access to Linux systems

Posted on Monday, Oct 24 2016 @ 15:06 CEST by Thomas De Maesschalck
Word is spreading about "Dirty COW", a dangerous privilege escalation bug in the Linux kernel that gives hackers total control over your system. Astonishingly, the bug has been present since 2007 and is relatively easy to exploit.
Phil Oester is a network admin and security researcher who uncovered the flaw while capturing HTTP traffic on a server that seemed to have been hacked. He explained that this security issue has been around since 2007, and is now likely to become more widespread. Oester said:

The exploit in the wild is trivial to execute, never fails and has probably been around for years - the version I obtained was compiled with gcc 4.8. As Linus [Torvalds] notes in his commit, this is an ancient bug and impacts kernels going back many years. All Linux users need to take this bug very seriously, and patch their systems ASAP.
A kernel patch is already available and it's already patched on some of the major Linux distributions. The bad news is that there are millions of devices out there that will likely never receive an update for this, including the countless Android phones that receive no manufacturer updates.



Via: Neowin


About the Author

Thomas De Maesschalck

Thomas has been messing with computer since early childhood and firmly believes the Internet is the best thing since sliced bread. Enjoys playing with new tech, is fascinated by science, and passionate about financial markets. When not behind a computer, he can be found with running shoes on or lifting heavy weights in the weight room.



Loading Comments