Day 0 Linux Grub Vulnerability Identified

Please follow & like us :)

A new Day 0 Linux Grub Vulnerability has been identified which allows an attacker to bypass security and potentially take control of the system.

The attacker can by pass security by simply press backspace 28 times when grub asks you for your username, if the machine reboots or you get placed into the rescue shell, your system is affected.

Thanks to the Veeam Community Forum Digest for alerting us

For full details on the vulnerability you can visit this site: http://hmarco.org/bugs/CVE-2015-8370-Grub2-authentication-bypass.html

CVE ID: 2015-8370 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8370

[ad name=”sysadmintutorialsSquareLargeBottom”]

Be the first to comment

Leave a Reply

Your email address will not be published.


*


*

This site uses Akismet to reduce spam. Learn how your comment data is processed.