Day 0 Linux Grub Vulnerability Identified

gorilla-chimp

A new Day 0 Linux Grub Vulnerability has been identified which allows an attacker to bypass security and potentially take control of the system.

The attacker can by pass security by simply press backspace 28 times when grub asks you for your username, if the machine reboots or you get placed into the rescue shell, your system is affected.

Thanks to the Veeam Community Forum Digest for alerting us

For full details on the vulnerability you can visit this site: http://hmarco.org/bugs/CVE-2015-8370-Grub2-authentication-bypass.html

CVE ID: 2015-8370 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8370

[ad name=”sysadmintutorialsSquareLargeBottom”]

The post Day 0 Linux Grub Vulnerability Identified appeared first on SYSADMINTUTORIALS IT TECHNOLOGY BLOG.