1 min read

'Baron Samedit' Sudo Vulnerability Also Affects macOS; No Patch Available Yet

Silviu STAHIE

February 03, 2021

Ad One product to protect all your devices, without slowing them down.
Free 90-day trial
'Baron Samedit' Sudo Vulnerability Also Affects macOS; No Patch Available Yet

Security researchers identified a new Sudo vulnerability affecting Linux systems a few days ago and dubbed it ‘Baron Samedi.’ Another researcher found that the same Sudo version also ships with the latest version of macOS, which means the vulnerability now extends to another OS.

Sudo is a powerful tool that lets a regular user run other apps or commands with the superuser’s privileges. Using such an instrument comes with great responsibility. Sudo is necessary on Linux systems and is used often, which means that any vulnerability within the software can bring significant issues.

“When Sudo runs a command in shell mode, either via the -s or -I command-line option, it escapes special characters in the command’s arguments with a backslash,” said the Sudo developers. “The bug can be leveraged to elevate privileges to root, even if the user is not listed in the sudoers file. User authentication is not required to exploit the bug.”

Sudo is by no means perfect software, and researchers have found other vulnerabilities in the past, which developers quickly fixed. The Linux platform has a distinct advantage in this area, as fixes tend to spread more easily across the ecosystem. Unfortunately, the problem has been around for years, as it affected versions 1.8.2 through 1.8.31p2 and 1.9.0 through 1.9.5p1.

Now, security researcher Matthew Hickey has discovered that attackers could use the same vulnerability on macOS systems. This was only possible because macOS Big Sur uses an older version of Sudo and hasn’t been patched yet.

“CVE-2021-3156 also impacts MacOS Big Sur (unpatched at present), you can enable exploitation of the issue by symlinking Sudo to sudoedit and then triggering the heap overflow to escalate one’s privileges to 1337 uid=0,” said the researcher on Twitter.

tags


Author



Right now

Top posts

The Holiday Guide to Tech Support: Fixing the Family Computer

The Holiday Guide to Tech Support: Fixing the Family Computer

November 24, 2021

2 min read
Bitdefender Celebrates 20 Years of Cybersecurity Leadership

Bitdefender Celebrates 20 Years of Cybersecurity Leadership

November 04, 2021

3 min read
Bitdefender Study Reveals How Consumers Like (and Dislike) Managing Passwords

Bitdefender Study Reveals How Consumers Like (and Dislike) Managing Passwords

October 26, 2021

3 min read
What are drive-by download attacks and how do you prevent them?

What are drive-by download attacks and how do you prevent them?

October 25, 2021

2 min read
Criminals Can't Wait to Add Your IoT Device to Their DDoS Networks

Criminals Can't Wait to Add Your IoT Device to Their DDoS Networks

October 22, 2021

2 min read
Six in 10 Consumers Faced a Cyber Threat in 2021, New Bitdefender Study Reveals

Six in 10 Consumers Faced a Cyber Threat in 2021, New Bitdefender Study Reveals

October 20, 2021

3 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

Iranian Threat Actor Deployed Malicious PowerShell Script through Phishing, Then Stole Files and Credentials Iranian Threat Actor Deployed Malicious PowerShell Script through Phishing, Then Stole Files and Credentials
Silviu STAHIE

November 26, 2021

1 min read
Ukraine Arrests Five iPhone Hackers of the Phoenix International Hacking Group Ukraine Arrests Five iPhone Hackers of the Phoenix International Hacking Group
Filip TRUȚĂ

November 26, 2021

1 min read
Couple arrested for secretly installing cryptomining software on department store PCs Couple arrested for secretly installing cryptomining software on department store PCs
Graham CLULEY

November 26, 2021

1 min read