[Nulled] » Information security » Experts warn of a critical vulnerability of the Linux kernel of 10 points on the CVSS scale,
January 16 2023

Experts warn of a critical vulnerability of the Linux kernel of 10

web3 16-01-2023, 11:42 Information security 187

Experts warn of a critical vulnerability of the Linux kernel of 10 points on the CVSS scale, which affects SMB servers and can lead to RCE.

The critical vulnerability of the Linux kernel makes SMB servers with ksmbd enabled (a Linux kernel server that implements the SMB3 protocol in the kernel space for file exchange over the network) vulnerable to hacking.

The problem is related to incorrect processing of SMB2_TREE_DISCONNECT commands, due to the lack of checking the existence of the object before performing operations on the object.

A remote attacker who has not been authenticated can execute arbitrary code on vulnerable Linux kernel installations.

Authentication is not required to exploit this vulnerability, but only systems with ksmbd enabled are vulnerable.

The vulnerability was discovered on July 26, 2022 by researchers Arnaud Gatignol, Quentin Minster, Florent Sodel and Guillaume Tessier from the Thales Group team, and was publicly disclosed on December 22, 2022.

Researcher Shir Tamari from Wiz_IO noted that SMB servers using Samba are not affected, adding that SMB servers using ksmbd are vulnerable to read access, which can lead to a server memory leak (similar to the Heartbleed vulnerability).

Due to the novelty of ksmbd, most users still use Samba.

Administrators using the same ksmbd are recommended to update the Linux kernel to version 5.15.61 or later, released in August.

Information

Visitors who are in the group Guests they can't download files.
Log in to the site under your login and password or if you are a new user go through the process registrations on the website.

Comments:

This publication has no comments yet. You can be the first!

Information the publication:

  • Author of the publication: web3
  • Date of publication: 16 January 2023 11:42
  • Publication category(s): Information security
  • Number of views of the publication: 187
  • Number of comments to the publication: 0

Related News

15 January 2023
Information security
Synology has eliminated

Synology has eliminated a critical vulnerability in VPN routers

Read more
16 January 2023
Information security
Most Cacti installations

Most Cacti installations on the Internet are not fixed and are vulnerable to a critical RCE error, which is

Read more
16 January 2023
Information security
Critical CVE-2022-44877

Critical CVE-2022-44877 with a severity rating of 9.8 out of 10, recently fixed in the Control Web Panel (formerly

Read more
16 January 2023
Information security
Auth0 fixed an RCE

Auth0 fixed an RCE vulnerability in the popular open source library JsonWebToken, which was used in more than

Read more
16 January 2023
Information security
In their latest report,

In their latest report, Crowdstrike report how Scattered Spider tried to implement BYOVD using an old Intel driver

Read more

Information

Users of 🆅🅸🆂🅸🆃🅾🆁 are not allowed to comment this publication.

Site Search

Site Menu


☑ Websites Scripts

Calendar

«    November 2024    »
MonTueWedThuFriSatSun
 123
45678910
11121314151617
18192021222324
252627282930 

Advertisement

Survey on the website

Evaluate the work of the site
 

Statistics

  • +15 Total articles 6747
  • +16 Comments 4077
  • +22 Users : 5841