Fix your OSX local privilege escalation vulnerability: sudo chmod -s /usr/bin/newgrp
@archwisp Huh? Isn't the vuln in the dyn loader and you can use any setuid root command that runs a user-controlled command after privdrop?
-
-
@archwisp See https://www.sektioneins.de/en/blog/15-07-07-dyld_print_to_file_lpe.html … - demos exploitation through su or crontab -
@archwisp So I don't think your "fix" fixes anything
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.