Threat Advisory: Linux Kernel Vulnerability (CVE-2016-0728)
January 19, 2016
According to the Perception Point research team, a zero-day vulnerability, which has existed since 2012, has been discovered today allowing Android or Linux applications to escalate privileges and gain root access.
Any Linux machine with Kernel 3.8 or higher is vulnerable, which includes tens of millions of Linux PCs and servers, as well as 66% of all Android devices. By exploiting this vulnerability, local users are able to escalate privileges to root or admin level, which can assist the attackers in moving laterally within the targeted environment. Attackers may be able to delete files, view private data, access privileged credentials, and install unwanted programs.
Herjavec Group will continue to monitor this vulnerability and notify our customers of appropriate developments and patches as they arise.
For more information read the full Perception Point article here.