Phil Collins was ahead of his time
There’s this girl that’s been on my mind
All the time, Su-Sussudio
Now she don’t even know my name
But I think she likes me just the same
Ok maybe Phil Collins was not a cyber-criminal, but the current sudo vulnerability is real.
Sudo is a utility that is wide spread and used on almost all Linux based systems, IBM AIX and macOS. Recently a vulnerability was disclosed that has been active for over 10 years. This vulnerability will allow an unauthorized user to attain root privileges without credentials. If a malicious actor has access to your system, he could attain root access quickly and easily. Your new intern that has only the minimal permissions, could have root permissions by the end of the day. Do you trust them that much?
The good news: There is a patch available – Sudo v1.9.5p2.
The bad news: Most organizations are not quick to install patches.
Criminals, both internal and external, can take advantage of the sudo vulnerability until a patch is installed and the vulnerability eliminated. Don’t be the one that “was going to get around to updating” but never did. Take the few moments needed, and install the updates.
You can thank Phil Collins later.
Source: CVE identifier of CVE-2021-3156, aka “Baron Samedit,”