Language Selection

English French German Italian Portuguese Spanish

Student stiffs penetration tool BackTrack Linux with 0-day

Filed under
Linux
Security

A student has discovered a critical vulnerability in BackTrack, a flavour of Linux that's a favourite among security pros.

The previously undiscovered (hence zero-day) privilege escalation bug in the network penetration-testing distro was discovered during an ethical hacking class organised by the InfoSec Institute.

Jack Koziol, security programme manager at the institute, explained that the bug in Backtrack 5 R2 (the latest version) allowed the student to overwrite settings to gain a root shell. The flaw was found in wicd (the Wireless Interface Connection Daemon), which has not been tested for "potential remote exploitation vectors" according to Koziol.

rest here




More in Tux Machines

Netrunner 14.2 LTS – Update Release

The Netrunner team is proud to announce the release of Netrunner 14.2 LTS – 32bit and 64bit ISOs. Read more

A scalable tool for deploying Linux containers in high-performance computing

One increasingly popular approach is container-based computing, designed to support flexible, scalable computing. Linux containers, which are just now beginning to find their way into the HPC environment, allow an application to be packaged with its entire software stack, including portions of the base operating system files, user environment variables and application "entry points." Read more

Lenovo teams up with Red Hat, offers hefty rebates in bids to boost server business (and other Red Hat news)

AMD Linux Graphics: The Latest Open-Source RadeonSI Driver Moves On To Smacking Catalyst

Following this weekend's Radeon R9 Fury open-source Linux driver tests with the DRM-Next code to be merged into Linux 4.3, the latest Mesa 11.1-devel Git code, and LLVM 3.8 SVN for the AMDGPU compiler back-end, I proceeded to run some bleeding-edge open-source Radeon Gallium3D graphics versus AMD Catalyst Linux benchmarks on Ubuntu. Read more