[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FD] Nginx (Debian-based + Gentoo distros) - Root Privilege Escalation [CVE-2016-1247 UPDATE]

To: fulldisclosure@xxxxxxxxxxxx
Subject: [FD] Nginx (Debian-based + Gentoo distros) - Root Privilege Escalation [CVE-2016-1247 UPDATE]
From: Dawid Golunski <dawid@xxxxxxxxxxxxxxxx>
Date: Fri, 13 Jan 2017 07:34:51 -0200

[Updated CVE-2016-1247 advisory]

Nginx packages on Gentoo distros were also found vulnerable to Root
Privilege Escalation (CVE-2016-1247) exploit I discovered last year.

Updated advisory URL:
https://legalhackers.com/advisories/Nginx-Exploit-Deb-Root-PrivEsc-CVE-2016-1247.html

Gentoo notice:
https://security.gentoo.org/glsa/201701-22


Follow:
https://twitter.com/dawid_golunski
for more vulns.


Regards,
Dawid Golunski
https://legalhackers.com
t: @dawid_golunski

_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/

Prev by Date: [FD] ICMPv6 PTBs and IPv6 frag filtering (particularly at BGP peers)
Next by Date: [FD] Executable installers are vulnerable^WEVIL (case 44): SoftMaker's FlexiPDF installers allow escalation of privilege
Previous by thread: [FD] ICMPv6 PTBs and IPv6 frag filtering (particularly at BGP peers)
Next by thread: [FD] Executable installers are vulnerable^WEVIL (case 44): SoftMaker's FlexiPDF installers allow escalation of privilege
Index(es):
- Date
- Thread