Security researchers have discovered a critical vulnerability by name Grinch Bug, which can be exploited by malicious hackers to acquire unauthorized root access to Linux-based computing systems.
Vulnerability concerns the Linux authorization system and allows for the escalation of privileges through the wheel (Unix terminology).
The new bug leaves Linux system administrators awake a few days after it poodle - Another deadly error of 2014 - has come back to the forefront. Grinch's vulnerability affects all distributions of the Linux operating system and, according to researchers from Alert Logic, which uncovered the bug last Tuesday, potentially gives root access to any attacker without the use of codes or special encryption keys.
A hacker could exploit the vulnerability with either conversion of registered user accounts in wheel or by exploiting the Policy Kit (Polkit), a graphical user interface (User Interface) που χρησιμοποιείται από απλούς users, to perform tasks that require administrator privileges.