A 19-year-old Linux kernel flaw in the CIFS subsystem, dubbed CIFSwitch, can let low-privileged users gain root access by abusing request_key and cifs.upcall behavior. The issue affects multiple Linux distributions and has already been patched, with proof-of-concept code released to help defenders validate exposure. #CIFSwitch #CIFS #cifs-utils #LinuxKernel
Keypoints
- The vulnerability has existed in the Linux kernel for 19 years.
- CIFSwitch affects the CIFS subsystem and cifs-utils helper.
- Attackers can trigger request_key directly and bypass CIFS origin checks.
- The flaw can lead to root access and attacker-controlled code execution.
- Multiple Linux distributions were affected, and fixes have been released.
Read More: https://www.securityweek.com/19-year-old-linux-kernel-vulnerability-exposes-systems-to-root-access/