Librarium
Settings

A New Buffer Overflow Exploit Has Been Discovered For Sudo

Brodie Robertson | Linux Tips & Tricks
technologyarch linuxbrodie robertsoncve-2019-18634debianelementary oslinuxlinux exploitlinux mintlinux newslinux securitylinux security newslinux security vulnerabilitieslinux sudo commandpwfeedbackpwfeedback buffer overflowroot accesssecurity newsstack buffer overflowstack buffer overflow attackstack buffer overflow explainedsudosudo linuxsudo vulnerabilitysudo vulnerability exploitsudo vulnerability linuxtech newsscience & technology

Recently a vulnerability has been discovered for sudo which allows for an attacker to elevate their security access to a root level through a exploit involving pwfeedback. This exploit is a stack buffer overflow exploit which is caused by flooding the password prompt with garbage data until the buffer overflows and gives the user root access, this exploit does not require the user to be in the sudoers file. This bug has been listed as cve-2019-18634

šŸ’– Subscribe and ding the bell for more videos! šŸ‘ Leave a like if you got something out of this video! āœ Comment some video feedback or what you want to see next time!

==========Resources========== 9 To 5 Linux Article: https://9to5linux.com/new-sudo-vulnerability-could-allow-attackers-to-obtain-full-root-privileges

Sudo cve-2019-18634: https://www.sudo.ws/alerts/pwfeedback.html

The Hacker News Article: https://thehackernews.com/2020/02/sudo-linux-vulnerability.html

==========Support The Channel========== Patreon: https://www.patreon.com/brodierobertson Paypal: https://www.paypal.me/BrodieRobertsonVideo BTC Wallet Address: 1Aokiv3pFQXUEmh2LbzZQAwxMvq6bpT2UN ETH Wallet Address: 0x80451867c86bdf08c3888d407c1e3fcb6add61ed LBC Wallet Address: bLRN9fm17sCexKfgbYqmMj5xskZF2ogpEh

=========Video Platforms========== šŸŽ„ LBRY: https://open.lbry.com/@BrodieRobertson#5 šŸ“š LBRY Referral Link: https://lbry.tv/$/invite/@BrodieRobertson:5 šŸ“ŗ BitTube: https://bittube.tv/profile/BrodieRobertson

==========Social Media========== šŸŽ¤ Discord: https://discord.gg/PkMRVn9 šŸ¦ Twitter: https://twitter.com/BrodieOnYoutube šŸ§  Minds: https://www.minds.com/brodierobertson/ āœ‰ļø Telegram: https://t.me/BrodieRobertson šŸŒ Mastodon: https://mastodon.social/@BrodieOnYoutube

==========My Repos========== šŸ–„ļø GitHub: https://github.com/BrodieRobertson

==========Credits========== šŸŽµ Opening music Full Power by ZAYFALL https://soundcloud.com/zayfallmusic Creative Commons ā€” Attribution 3.0 Unported ā€” CC BY 3.0 Free Download / Stream: https://bit.ly/_full-power Music promoted by Audio Library https://youtu.be/vWuGCATLwxI

šŸŽµ Ending music Music from https://filmmusic.io "Basic Implosion" by Kevin MacLeod (https://incompetech.com) License: CC BY (http://creativecommons.org/licenses/by/4.0/) ... https://www.youtube.com/watch?v=fuevAeG5Eis

2020-02-04
5.01 LBC
Copyrighted (contact publisher)

163970861 Bytes