The Qualys Threat Research Unit (TRU) has discovered a buffer overflow vulnerability in GNU C Library’s dynamic loader’s processing of the GLIBC_TUNABLES environment variable.
Has anyone tried the POC’s for this on their systems? Just curious as to your success rate. I’ve been running 3 slightly difference POC’s for the past 4 days and I’m still yet to drop to root on any of the 3 systems I’m trying on.
Has anyone tried the POC’s for this on their systems? Just curious as to your success rate. I’ve been running 3 slightly difference POC’s for the past 4 days and I’m still yet to drop to root on any of the 3 systems I’m trying on.
@nkukard No, we haven’t tried yet. :-)