• Patch Lady – 31 days of Paranoia – Day 18

    Home » Forums » Newsletter and Homepage topics » Patch Lady – 31 days of Paranoia – Day 18

    Tags:

    Author
    Topic
    Susan Bradley
    Manager
    October 18, 2018 at 11:19 pm #225584

    Today we’re taking a break from our normal paranoia to discuss a recent vulnerability.  The headlines imply that a guest user can gain admin rights vi
    [See the full post at: Patch Lady – 31 days of Paranoia – Day 18]

    Susan Bradley Patch Lady/Prudent patcher

    7 users thanked author for this post.
    lanceboil, jburk07, SueW, Elly, anita.yk, GreatAndPowerfulTech, woody
    Reply | Quote
    Viewing 2 reply threads
    Author
    Replies
    • anonymous
      Guest
      October 19, 2018 at 5:56 am #225601

      Well yes, RID hijacking is a privilege escalation attack, where a non-admin can gain admin rights. That is indeed quite different from being authenticate straight to admin.

      However, lots of organizations have users with access levels other than “none” and “admin”, and that’s where RID hijacking becomes a problem.

      Reply | Quote
    • rc primak
      AskWoody_MVP
      October 19, 2018 at 10:35 am #225665

      Libssh sounds like Linux terminology to me. Is this a Linux vulnerability, a Windows vulnerability, or both?

      -- rc primak

      Reply | Quote
      • anonymous
        Guest
        October 19, 2018 at 12:23 pm #225687

        If the defective libssh is used in a Linux server role, yes. I do not know if Microsoft used any of the libssh code.

        Reply | Quote
      • anonymous
        Guest
        October 19, 2018 at 12:23 pm #225688

        There might exist Windows programs which are using the indicated defective libssh.

        Reply | Quote
    • anonymous
      Guest
      October 19, 2018 at 1:30 pm #225698

      The libssh, while disturbing, isn’t quite as bad as it appears at first glance.

      Sites like github were not vulnerable because they didn’t use the affected libraries.  Distros which use libssh2, such as RHEL6 and RHEL7, are not affected.

      Should you check your systems?  Absolutely, and patch them if you happen to be running a vulnerable version.

      Reply | Quote
    Viewing 2 reply threads
    Reply To: Patch Lady – 31 days of Paranoia – Day 18

    You can use BBCodes to format your content.
    Your account can't use all available BBCodes, they will be stripped before saving.

    Your information:




DON'T MISS OUT!
Subscribe to the Free Newsletter
We promise not to spam you. Unsubscribe at any time.
Invalid email address

View the Forum

  • Recent Replies
  • My Replies
  • My Active Topics
  • New Posts in the Last day
  • Private Messages
  • Knowledge Base
  • How to use the Forums
  • All Forums

    • Recent Topics

    My Profile

    May 2025
    S M T W T F S
     123
    45678910
    11121314151617
    18192021222324
    25262728293031

    Remembering Woody

     

    Want to Advertise in the free newsletter? How about a gift subscription in honor of a birthday? Send an email to sb@askwoody.com to ask how.

    Mastodon profile for DefConPatch
    Mastodon profile for AskWoody

     

    Home About FAQ Posts & Privacy Forums My Account
    Register Free Newsletter Plus Membership Gift Certificates MS-DEFCON Alerts

    Copyright ©2004-2025 by AskWoody Tech LLC. All Rights Reserved.