A privilege escalation flaw in udev

Posted Apr 22, 2009 22:29 UTC (Wed) by Trou.fr (subscriber, #26289)
Parent article: A privilege escalation flaw in udev

The most clever way to exploit this vulnerability is to leverage the fact that since udev 116, it is possible to specify a command to be run in the message sent via the netlink socket.

So on udev > 116, you have arbitrary command execution as root, for any users, 100% reliable, not arch specific.

One of the most important vulnerabilities in years on GNU/Linux systems imho.