Language Selection

English French German Italian Portuguese Spanish

Student stiffs penetration tool BackTrack Linux with 0-day

Filed under
Linux
Security

A student has discovered a critical vulnerability in BackTrack, a flavour of Linux that's a favourite among security pros.

The previously undiscovered (hence zero-day) privilege escalation bug in the network penetration-testing distro was discovered during an ethical hacking class organised by the InfoSec Institute.

Jack Koziol, security programme manager at the institute, explained that the bug in Backtrack 5 R2 (the latest version) allowed the student to overwrite settings to gain a root shell. The flaw was found in wicd (the Wireless Interface Connection Daemon), which has not been tested for "potential remote exploitation vectors" according to Koziol.

rest here




More in Tux Machines

KDevelop 5.2.2 and 5.2.3 released

KDevelop 5.2.2 and 5.2.3 released We today provide a stabilization and bugfix release with version 5.2.2 and 5.2.3. 5.2.2 was tagged 6 weeks ago, but we never managed to release it because we did not have the patience to fix the Windows installers in time due to a broken CI. Windows installers are provided for 5.2.3 again. We'll only provide source tarballs for 5.2.2 and we encourage everyone to just skip this release and use 5.2.3 which contains a few more bug fixes. This is a bugfix-only release, which introduces no new features and as such is a safe and recommended update for everyone currently using KDevelop 5.2.1. Read more Also: This week in Usability & Productivity, part 19

FreeOffice 2018 Release is Seamlessly Compatible With MS Office on Linux

FreeOffice 2018 has just been released and it provides even better support for Microsoft Office documents on Linux. Read more

Android Leftovers

today's howtos