A dangerous bug has been found in Linux operating system. This vulnerablity is a Linux kernel security flaw that allows privilege-escalation – a user can gain root priveleges in less than 5 seconds. Scary isn’t it! Cyber security experts have named it as the “Dirty COW” bug. Phil Oester, a Linux developer had discovered and reported the Dirty COW bug.
The Red Hat site describes the bug as:
“A race condition was found in the way the Linux kernel’s memory subsystem handled the copy-on-write (COW) breakage of private read-only memory mappings. An unprivileged local user could use this flaw to gain write access to otherwise read-only memory mappings and thus increase their privileges on the system.”
The finding revealed that the Dirty COW vulnerability had been exploited for more that 9 years. Linus Torvalds has stated that he knew about this vulnerability 11 years back, but did not fix it as it was considered to be very difficult to exploit. Now, however, it has been found that it was being exploited in the wild.
Privilege-escalation is scary, as malware that gains root access would gain complete control of the device within 5 seconds. Any user with limited access privileges would gain root (administrative) priveleges too. This would allow them to encrypt data, takeover the network and install other malware. “Copy on write (COW)” is a duplication technique. The Dirty COW vulnerability allows a local/underpriveleged user to escalate his/her allowed privileges to root.
What more is needed for malicious intent? For over 9 years this bug has been exploited, while all this time Linux had been considered pretty safe!
Wonder what other vulnerability is still being exploited in Linux.
The Dirty COW vulnerability has been found in the kernel area that exists in all distributions of Linux. And as Linux is being used in most servers worldwide, this vulnerability could have a massive impact.
Now, patches are being releases distro-wise and version-wise for this Linux kernel bug. All Linux users must update their systems immediately with the latest patches as and when they are being released.
How to Stay Protected Against Linux Malware
The Dirty COW bug vulnerability was not detected by any antivirus program. The only way it could be possibly be detected is through suspicious malicious activity that it may do.
The post Dangerous Dirty Cow Vulnerability in Linux OS appeared first on Comodo Antivirus Blogs | Anti-Virus Software Updates.
Take a look at the best antivirus, anti-malware, anti-spy, etc. software
Powered by WPeMatico
The head of counterintelligence for a division of the Russian Federal Security Service (FSB) was… Read More
For nearly a dozen years, residents of South Carolina have been kept in the dark… Read More
The U.S. government is warning that “smart locks” securing entry to an estimated 50,000 dwellings… Read More
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) said today it is investigating a breach… Read More
On April 9, Twitter/X began automatically modifying links that mention “twitter.com” to read “x.com” instead.… Read More
If only Patch Tuesdays came around infrequently — like total solar eclipse rare — instead… Read More