A vulnerability has been discovered in the GRUB2 boot loader that affects versions dating back to 2009. GRUB2 is the default boot loader for a variety of popular Linux distributions including Ubuntu, Red Hat and Debian. The vulnerability can be exploited by pressing the backspace button 28 times when the boot loader asks for your username. This sequence of keys places the user into a “rescue shell”. An attacker couldĀ leverage this shell to access confidential data or install persistent malware.
It’s worth noting that the vulnerability requires access to the system’s console. Even if your organization has proper physical security controls in place, this issue should still be addressed as soon as possible. Ubuntu, RedHat and Debian have already released patches for this vulnerability.
Just wrote a blog for https://t.co/dtbUwy7u23 about the GRUB2 Authentication Bypass Vulnerability https://t.co/fEmABiiCHj #InfoSec #Privacy
New Blog Post: GRUB2 Authentication Bypass Vulnerability https://t.co/f5ME6J2Bw8
RT @lbhuston: New Blog Post: GRUB2 Authentication Bypass Vulnerability https://t.co/f5ME6J2Bw8
GRUB2 Authentication Bypass Vulnerability – A vulnerability has been discovered in the GRUB2 boot loader that a… https://t.co/XMshY0edYK
GRUB2 Authentication Bypass Vulnerability – MSI :: State of SecurityMSI… https://t.co/rV7A331c8d
GRUB2 Authentication Bypass Vulnerability – MSI :: State of Security #infosec #security https://t.co/1AFuULPIoB