Container

New CrowdStrike Research Challenges Container Predictability Assumptions

Oct 30, 2024 by iHash Leave a Comment

General-purpose Linux utilities — often observed in living off the land post-exploitation activity — are frequently used in popular containerized applications.CrowdStrike researchers have identified significant variation in the usage patterns of general-purpose Linux utilities across these containerized applications.The findings challenge commonly accepted assumptions about the … [Read more...] about New CrowdStrike Research Challenges Container Predictability Assumptions

New Vulnerability in CRI-O Container Engine (CVE-2022-0811)

Mar 27, 2022 by iHash Leave a Comment

CrowdStrike cloud security researchers discovered a new vulnerability (dubbed “cr8escape” and tracked as CVE-2022-0811) in the Kubernetes container engine CRI-O. CrowdStrike disclosed the vulnerability to Kubernetes, which worked with CRI-O to issue a patch that was released today. It is recommended that CRI-O users patch immediately. CrowdStrike customers are protected from … [Read more...] about New Vulnerability in CRI-O Container Engine (CVE-2022-0811)

New Linux Kernel cgroups Vulnerability Could Let Attackers Escape Container

Mar 5, 2022 by iHash Leave a Comment

Details have emerged about a now-patched high-severity vulnerability in the Linux kernel that could potentially be abused to escape a container in order to execute arbitrary commands on the container host. The shortcoming resides in a Linux kernel feature called control groups, also referred to as cgroups version 1 (v1), which allows processes to be organized into hierarchical … [Read more...] about New Linux Kernel cgroups Vulnerability Could Let Attackers Escape Container

Kubernetes Container Escape Using Linux Kernel Exploit

Feb 1, 2022 by iHash Leave a Comment

On Jan. 18, 2022, researchers found a heap base buffer overflow flaw (CVE-2022-0185) in the Linux kernel (5.1-rc1+) function “legacy_parse_param” of filesystem context functionality, which allows an out-of-bounds write in kernel memory. Using this primitive, an unprivileged attacker can escalate its privilege to root, bypassing any Linux namespace restrictions. CVE-2022-0185 … [Read more...] about Kubernetes Container Escape Using Linux Kernel Exploit

Insights Regarding the Cisco REST API Container for IOS XE Software Authentication Bypass Vulnerability

Aug 30, 2019 by iHash Leave a Comment

This blog post was authored by Eugenio Iavarone, Cisco PSIRT. On August 28th, 2019, Cisco published a Security Advisory titled “Cisco REST API Container for Cisco IOS XE Software Authentication Bypass Vulnerability”, disclosing an internally found vulnerability which affects the Cisco REST API container for Cisco IOS XE. An exploit could be used to bypass authentication on … [Read more...] about Insights Regarding the Cisco REST API Container for IOS XE Software Authentication Bypass Vulnerability

JBL Flip 6 Portable Bluetooth Speaker (Open Box) for $74

Navee V25 300W Foldable e-Scooter for $299

Smart Tracker Includes Key Ring – Works with Apple Find My App (2-Pack) for $34

Harmony Premium Plan Lifetime Subscription for $99

Lenovo 11.6" 100e Chromebook 2nd Gen (2019) MediaTek MT8173C 4GB RAM 16GB eMMC (Refurbished) for $54

New CrowdStrike Research Challenges Container Predictability Assumptions

New Vulnerability in CRI-O Container Engine (CVE-2022-0811)

New Linux Kernel cgroups Vulnerability Could Let Attackers Escape Container

Kubernetes Container Escape Using Linux Kernel Exploit

Insights Regarding the Cisco REST API Container for IOS XE Software Authentication Bypass Vulnerability