Nimbuspwn, as Microsoft has named the EoP threat, is two vulnerabilities that reside in the networkd-dispatcher, a component in many Linux distributions that dispatch network status changes and can run various scripts to respond to a new status. When a machine boots, networkd-dispatcher runs as root.

The flaws, tracked as CVE-2022-29799 and CVE-2022-29800, combine threats including directory traversal, symlink race, and time-of-check time-of-use (TOCTOU) race condition.

  • Helix 🧬@feddit.de
    link
    fedilink
    arrow-up
    0
    ·
    3 years ago

    And of course they gave it a fancy name. Why wouldn’t they. Does the thing also have a website and Instagram?