Cve-2016-4484

Discussion in 'Linux' started by 14971.1k.rs-pre.16, Nov 15, 2016.

  1. 14971.1k.rs-pre.16

    14971.1k.rs-pre.16 MDL Novice

    Nov 11, 2016
    7
    6
    0
    #1 14971.1k.rs-pre.16, Nov 15, 2016
    CVE-2016-4484

    The Exploit (PoC)

    The attacker just have to press and keep pressing the [Enter] key at the LUKS password prompt until a shell appears, which occurs after 70 seconds approx.

    hmarco.org/bugs/CVE-2016-4484/CVE-2016-4484_cryptsetup_initrd_shell.html
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...