hacking

RunC Flaw Lets Attackers To Overwrite The host And Gain Root

Insight: RunC Flaw Lets Attackers To Overwrite The host And Gain Root On Hosts

Open security researchers Adam Iwaniuk, Borys Poplawski and Aleska Sarai discovered a vulnerability CVE-2019-5736 in the core runC (the underlying container runtime underneath Docker, cri-o, containerd, Kubernetes, and so on)container code.

According to them, This vulnerability allows attackers to overwrite the host runC binary and obtain host root access.RunC Flaw Lets  Attackers To Overwrite The host And Gain Root On Hosts

It allows attackers to execute a command as root in a new container with an attacker-controlled image, or in an existing container, to which the attacker previously had write access, that can be attached with docker exec. According to the researchers,  This occurs because of file-descriptor mishandling, related to /proc/self/exe.

 



READ THIS ALSO  Top Hacking and Penetration Linux Operating System.

Subscribe To Our Newsletter.

Join our mailing list to receive the latest linux tutorials, tips & tricks, freebies,news and updates from our team.

You have Successfully Subscribed!