1
Loading...

A New Buffer Overflow Exploit Has Been Discovered For Sudo

Vote
16 16 views
1y Feb 4, 2020
G

Recently a vulnerability has been discovered for sudo which allows for an attacker to elevate their security access to a root level through a exploit involving pwfeedback. This exploit is a stack buffer overflow exploit which is caused by flooding the password prompt with garbage data until the buffer overflows and gives the user root access, this exploit does not require the user to be in the sudoers file. This bug has been listed as cve-2019-18634

💖 Subscribe and ding the bell for more videos!
👍 Leave a like if you got something out of this video!
✍ Comment some video feedback or what you want to see next time!

==========Resources==========
9 To 5 Linux Article:
https://9to5linux.com/new-sudo-vulnerability-could-allow-attackers-to-obtain-full-root-privileges

Sudo cve-2019-18634:
https://www.sudo.ws/alerts/pwfeedback.html

The Hacker News Article:
https://thehackernews.com/2020/02/sudo-linux-vulnerability.html

==========Support The Channel==========
Patreon:
https://www.patreon.com/brodierobertson
Paypal:
https://www.paypal.me/BrodieRobertsonVideo
BTC Wallet Address:
1Aokiv3pFQXUEmh2LbzZQAwxMvq6bpT2UN
ETH Wallet Address:
0x80451867c86bdf08c3888d407c1e3fcb6add61ed
LBC Wallet Address:
bLRN9fm17sCexKfgbYqmMj5xskZF2ogpEh

=========Video Platforms==========
🎥 LBRY:
https://open.lbry.com/@BrodieRobertson#5
📚 LBRY Referral Link:
https://lbry.tv/$/invite/@BrodieRobertson:5
📺 BitTube:
https://bittube.tv/profile/BrodieRobertson

==========Social Media==========
🎤 Discord:
https://discord.gg/PkMRVn9
🐦 Twitter:
https://twitter.com/BrodieOnYoutube
🧠 Minds:
https://www.minds.com/brodierobertson/
✉️ Telegram:
https://t.me/BrodieRobertson
🌐 Mastodon:
https://mastodon.social/@BrodieOnYoutube

==========My Repos==========
🖥️ GitHub:
https://github.com/BrodieRobertson

==========Credits==========
🎵 Opening music
Full Power by ZAYFALL https://soundcloud.com/zayfallmusic
Creative Commons — Attribution 3.0 Unported — CC BY 3.0
Free Download / Stream: https://bit.ly/_full-power
Music promoted by Audio Library https://youtu.be/vWuGCATLwxI

🎵 Ending music
Music from https://filmmusic.io
"Basic Implosion" by Kevin MacLeod (https://incompetech.com)
License: CC BY (http://creativecommons.org/licenses/by/4.0/)

About Brodie Robertson

For all general enquiries feel free to contact me through any social media service listed below, If you'd like to longer form something longer form like fan mail or you have a video suggestion, feel free to send me an email.


0 Comments

Markdown is supported.
Life Hacks with Randy Dreammaker – S1 • E4
2 days ago