Treasure to [email protected] • edit-221 hours agoUnauthenticated RCE vs all GNU/Linux systems to be fully disclosed in 2 weeks with no working fix yetnitter.poast.orgmessage-square23fedilinkarrow-up190arrow-down11file-textcross-posted to: [email protected][email protected]
arrow-up189arrow-down1external-linkUnauthenticated RCE vs all GNU/Linux systems to be fully disclosed in 2 weeks with no working fix yetnitter.poast.orgTreasure to [email protected] • edit-221 hours agomessage-square23fedilinkfile-textcross-posted to: [email protected][email protected]
minus-square@[email protected]linkfedilink45•1 day agoLet’s see if this really affects all Linux systems or if the stars need to align for this to actually be exploitable.
minus-squarePossibly linuxlinkfedilinkEnglish9•15 hours agoA 9.9 is pretty bad no matter what. They wouldn’t rank it almost a 10 if it was some obscure bug that is very hard to exploit. With that being said it is hard to know without details
minus-square@[email protected]linkfedilink10•17 hours agoI still remember hearing about a Ring 0 exploit in Windows (I may be misremembering, though) that required Ring 0 access. I think if an attacker has access to Ring 0, you’re already screwed anyway.
minus-square@[email protected]linkfedilink10•19 hours agoI agree, all this attention grabbing sound to me as if this is actually not a big deal. But we will see i guess.
Let’s see if this really affects all Linux systems or if the stars need to align for this to actually be exploitable.
A 9.9 is pretty bad no matter what. They wouldn’t rank it almost a 10 if it was some obscure bug that is very hard to exploit.
With that being said it is hard to know without details
I still remember hearing about a Ring 0 exploit in Windows (I may be misremembering, though) that required Ring 0 access. I think if an attacker has access to Ring 0, you’re already screwed anyway.
I agree, all this attention grabbing sound to me as if this is actually not a big deal. But we will see i guess.